Know  of  a  cool  network  project9  Go  online  to  enter  our  annual 
Extended  Enterprise  Innovator  Award  and  User  Excellence  Award  competitions. 
www.nwfiision.com,  DocFtnder:  2633 


The  bill  comes  every  single 
month,  and  literally  a  guy  comes 
off  the  truck  with  a  dolly  of 
boxes.  It  takes  four  full-time 
people  to  go  through  them. 


CTO  OF  A  GLOBAL  FINANCIAL  SERVICES  COMPANY 


Nemertes  Research 


smile:  [q  barrier 

Customers 

are  generally  pleased  with  the 
performance  and  reliability  of  Tier  1 
service  provider  networks,  but  they’re 
less  than  thrilled  with  the  level  of 
customer  service,  according  to  a 
survey  by  Nemertes  Research. 


New  server  chips 
carry  hidden  cost 


■  BY  JENNIFER  MEARS 

In  the  rush  to  roll  out  servers 
that  put  multiple  processors  on  a 
chip,  IBM,  Intel,  Sun  and  others 
inadvertently  are  raising  software 
costs  for  users. 

At  issue  is  that  software  vendors 
such  as  Oracle  and  Microsoft  that 
license  software  on  a  per-CPU 
basis  are  likely  to  consider  each 
processor  a  separate  CPU,  a  prac¬ 
tice  that  means  double  the  licens¬ 
ing  costs  for  enterprise  users  de¬ 
ploying  new  dual-core  servers. 
These  servers  have  two  proces¬ 
sors  on  a  single  piece  of  silicon. 
With  four-core  servers  and  more 
on  the  horizon,  the  issue  likely 
will  become  amplified  as  ven¬ 
dors  try  to  figure  out  how  to  price 
software  and  enterprise  users 
See  Multi-core,  page  49 


Tower  of  power 

A  plethora  of  multi-core  servers  and  processors  will  hit 
the  market  in  the  next  couple  of  years. 

IBM:  Dual-core  Power5  available  now. 

Sun:  Dual-core  UltraSparc  IV 
available  now.  Eight-core  Niagra 
expected  in  2006. 

HP:  Dual-core  PA-8800  available  now. 

Intel:  All  chips  will  be  dual  core  by 
the  end  of  2005.  Eight-core Tanglewood 
slated  for  2006. 

AMD:  Dual-core  Opteron  set  for2005. 


Users,  vendors  treating 
healthcare  patching  ills 


IBM's  dual-core  Power5. 


New  tools  corral  WLAN  radio  waves 


■  BY  JOHN  COX 

A  host  of  new  management 
products  are  giving  network  exec¬ 
utives  tools  to  control  the  most 
elusive  element  of  wireless  LANs: 


the  radio  waves  that  actually  con¬ 
nect  clients  to  access  points. 

Most  are  being  touted  as  secur¬ 
ity  products  because  they  detect, 
and  in  some  cases  disconnect, 
rogue  WLAN  access  points  and 


users,  and  show  traffic  patterns 
that  might  reveal  an  attack  or  a 
malfunction.  But  there  are  other 
benefits  that  spring  from  this  abil¬ 
ity  to  “read”  radio  frequency 
waves,  including  tracking  the 
affect  and  location  of  RF  interfer¬ 
ence,  visualizing  real-time  be¬ 
havior  of  wireless  networks  and 
fine-tuning  WLAN  settings  to  en¬ 
sure  optimal  throughput. 

The  new  RF  tools  differ  from 
traditional  network  manage¬ 
ment  applications,  which  focus 
on  Layer  3  and  rely  on  the  fact 
that  IP-addressable  devices  are 
See  RF  tools,  page  16 


■  BY  ELLEN 
MESSMER 

There  contin¬ 
ues  to  be  plenty 
of  finger-pointing 
over  who  should 
fix  the  broken 
process  for  patching  Windows- 
based  patient-care  systems,  but 
some  users  and  vendors  are  at 
least  trying  to  deal  with  the  prob¬ 
lem  directly 
As  outlined  in  a 
Network  World  story 
earlier  this  month 
(www.nwfusion. 
com,  DocFinder: 

2594),  hospital  IT 
and  network  profes¬ 
sionals  say  their 


hands  are  tied  when  it  comes  to 
patching  patient-care  systems 
that  increasingly  are  based  on 
Microsoft  software  and  that  are 
often  networked  to  simplify  infor¬ 
mation  sharing.  IT  professionals 
say  device  makers  don’t  want 
customers  fussing  with  their  sys¬ 
tems  out  of  fear  that  the  prod¬ 
ucts  will  not  conform  to  rules 
laid  out  by  the  Federal  Drug  Ad 
ministration,  which  says  the 
See  Patches,  page  48 


When  IT  systems  aren’t  built  to  accommodate  the  highs  and  lows  of  everyday 
business  it  can  be  a  difficult,  and  sometimes  frightening,  process.  HP  Business 
Continuity  and  Availability  solutions  ensure  your  business  processes  stay  on  track 
and  safe  from  catastrophic  loss  as  changes  occur.  Working  with  senior  business 
and  IT  management,  HP  consultants  develop  strategies  that  mitigate  risk  and  make 
certain  technology  investments  complement  business  initiatives  by  anticipating 
change.  So  your  business  is  always  ready  for  whatever's  around  the  bend. 


adaptive  enterprise. 
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Predict 


Virus  Outbreaks? 


Introducing  IronPort  Virus  Outbreak  Filters 


Today’s  email  borne  viruses  propagate  globally  in  hours  or  minutes,  much 
faster  than  traditional  defenses  can  react,  leaving  you  exposed  to  the  “reaction 
time  gap?  IronPort’s  Virus  Outbreak  Filters™  stop  viruses  4  to  6  hours  before 
traditional  virus  definition  files  are  available,  literally  predicting  virus  attacks 
before  they  cause  harm.  Predict  your  future  at  www.ironport.com/nw 


POWERED  BY 

A/Vi 

IronPort’s  A/Vi  technology 
is  a  series  of  algorithms 
that  process  data  from 
SenderBase',"  the  world's 
largest  email  traffic 
monitoring  network. 


IRONPORT 


Rebuilding  the  World’s  Email  Infrastructure. 


O  Copyright  2004  IronPort  Systems.  Inc.  Alt  rights  reserved. 
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Face-off 

Is  graceful  restart  the  best  way  to  ensure  IP  reliability?  Matt  Kolon  (left)  of 
Juniper  says  yes,  but  Nortel's  Ru  Wadasinghe  is  partial  to  nonstop  routing. 

Page  31. 


Service,  but  no  smile 

Customers  are  happy  with  the  performance  of  their  carriers'  networks,  but  are  less 
enthralled  by  the  customer  service  they  receive  from  the  mcyor  service  providers, 
according  to  a  Nemertes  Research  survey.  Page  35. 


CLEAR  CHOICE 


TEST 


NetIQ's  Security  Manager  does  an  impressive  job  sorting  through  reams  of 
security  event  data.  Page  37. 

Peribit  Networks'  SR-100  appliance  uses  compression  technology  to  help 
conserve  WAN  bandwidth.  Page  38. 
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Archos'  AV420  gets  high 
marks  as  a  handheld 
digital  entertainment 
center.  Page  30 
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Exclusive 

Network  World  Fusion  Radio: 

The  iPod  security  risk 

Last  week's  Gartner  report  touting  Apple's  iPod  as  a  security  risk  to 
corporations  has  drawn  a  range  of  criticism  and  support.  Winn 
Schwartau,  president  of  The  Internet  Awareness  Company  and  Network 
World  columnist,  joins  us  to  sort  out  the  issue  of  security  and  portable 
media.  Available  in  Real,  Windows  Media  and  MP3.  DocFinder:  2946 

Forum:  Is  graceful  restart  the  best  way  to 
ensure  IP  reliability? 

Ru  Wadasinghe  of  Nortel  and  Matt  Kolon  of  Juniper  debate  the  merits 
of  graceful  restart  vs.  nonstop  routing  on  page  31  and  take  their  dis¬ 
cussion  online.  Read  their  thoughts  and  then  add  your  own  in  our 
forum.  DocFinder:  2923 

Free  downloads 

From  application  development  and  databases  to  management  and 
security,  check  out  our  free  and/or  evaluation  software. 

DocFinder:  2536 

Gall  for  Nominations:  2004  Network  World 
Reader-Recognition  Awards 

Send  in  your  choices  for  the  2004  Extended  Enterprise  Innovator 
Award  and  the  2004  Llser  Excellence  Award.  DocFinder:  2747 


Breaking  News 

Go  online  for  breaking  news  every  day.  DocFinder:  6342 
Free  e-mail  newsletters 

Sign  up  for  any  of  more  than  40  newsletters  on  key  network  topics. 

DocFinder:  6343 
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Columnists 

Nutter's  Help  Desk 

VSATs  and  cybercafes 

Help  Desk  guru  Ron  Nutter  advises  a  reader  on  how  to  get 
the  most  out  of  VSAT  for  his  planned  cybercafe. 

DocFinder:  2947 

Telework  Beat 

When  you  can’t  work  from  home,  Part  9 
Net.Worker  Managing  Editor  Toni  Kistner  looks  at  SuiteWorks, 
which  is  breaking  ground  on  its  telework  center  and  mapping 
its  strategy. 

DocFinder:  2948 

Small  Business  Tech 

New  content  management  options 

Columnist  James  Gaskin  examines  Macromedia's  new  Contribute 
3,  which  includes  a  high-end  Wob  publishing  system. 

DocFinder:  2949 

HomeLAN  Adventures 

What's  on  your  home  network? 

Columnist  Keith  Shaw  looks  at  a  home  network  survey,  which 
yielded  some  surprises. 

DocFinder  2950 

Seminars  and  Events 


Weekly  Webcast  Newsletter 

Our  weekly  newsletter  delivers  information  on  Webcasts  on 
Network  World  fusion  —  your  24-7  source  for  solutions 
and  strategies,  with  links,  resources  and  answers  you 
need.  Covering  topics  such  as  security,  applications  and 
wireless,  our  Webcasts  are  focused,  single-topic  briefings 
from  technology  experts  DocFinder:  2542 

What  is  DocFinder? 

We’ve  made  it  easy  to  access  articles  and 
resources  online.  Simply  enter  the  four-digit 
DocFinder  number  in  the  search  box  on  the 
home  page,  and  you’ll  jump  directly  to  the 
requested  information. 
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Powell  sees  long,  hard  fight  over  VoIP 

■  Bills  to  clarify  the  regulation  of  VoIP  in  the  U.S.  Senate  and  House 
of  Representatives  probably  won’t  go  up  for  consideration  in 
Congress’  current  session,  but  the  FCC  hopes  to  make  progress  on 
the  issue  by  year-end,  FCC  Chairman  Michael  Powell  told  Silicon 
Valley  entrepreneurs  and  venture  capitalists  last  week.The  question 
of  whether  VoIP  should  be  treated  as  a  telephone  service  or  as  an 
information  service  has  implications  for  taxation  and  issues  such  as 
91 1  emergency  call  services  and  wiretapping.  An  FCC  public  com¬ 
ment  period  on  VoIP  closed  last  week.The  agency  expects  to  look 
at  the  comments  and  make  some  decisions  on  the  issue  by  year- 
end,  although  some  aspects  of  VoIP  regulation,  such  as  how  much 
a  carrier  must  pay  to  terminate  a  call,  might  not  be  settled  for  years. 
Another  VoIP  battleground  is  in  state  governments,  which  have 
fiercely  resisted  giving  up  their  traditional  telecom  taxes  and  regu¬ 
lations  when  it  comes  to  VoIF?  Powell  said. 

Survey  finds  tech  spending  flat 

■  The  gradual  rise  in  IT  spending  forecasts  has  come  to  a  halt,  or  so  says  a  recent 
Goldman  Sachs  survey  of  100  senior  IT  executives.The  forecasts  flattened  out  at  2.3%  in 
June  after  being  pegged  at  2.4%  in  April;  long-term  spending  forecasts  also  remain  stag¬ 
nant  at  5.6%,  the  research  firm  found  in  its  June  survey.  Goldman  Sachs  says  the  findings 
indicate  IT  buyers“may  be  taking  their  foot  off  the  pedal  heading  into  midyear.”The  lack 
of  an  increase  also  shows  Goldman  Sachs  that  there  is  no  new  “must-have"  technology 
causing  IT  executives  to  get  out  their  checkbooks.  Despite  the  lack  of  growth,  the  poll 
found  CIOs  still  plan  to  spend  in  the  fourth  quarter,  with  21%  expecting  to  increase  IT 
purchases  then. 

Symantec  buys  another  anti-spam  vendor 

■  Symantec  last  week  announced  it  has  acquired  TurnTide,  an  anti-spam  company  for 
about  $28  million.  Symantec,  which  recently  completed  its  acquisition  of  anti-spam  ven¬ 
dor  Brightmail.said  it  anticipates  having  a  product  available  in  the  fall  that  usesTurnTide’s 
technology  which  works  in  network  routers  to  block  spam.  Most  anti-spam  technology 
works  on  the  server,  gateway  or  desktop. 


“No,  the  hole  in  Microsoft’s 
IE  is  THIS  BIG!” 


Layer 


So  sayeth  Sun  CEO  Scott 
McNealy  or  at  least  that's 

the  case  according  to  our  latest  Weekly  Caption  Contest  winner, 
Robert  Lahr  of  Newport,  Pa.  You  can  win,  too.  Check  Layer  8  every 
Monday  for  the  start  of  our  next  tilt 
www.nwfusion.com/weblogs/layer8 
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Good  Bad  Ugly 


fo  ©\ 


Nextel’s  good  deed.  Nextel  announced  last  week  it  is  working 
the  National  Center  for  Missing  &  Exploited  Children 
to  offer  an  Amber  Alert  service  to  its 
customers  on  an  opt-in  basis.  Today, 
the  service  is  only  available  in 
Pennsylvania,  but  Nextel  has 
plans  to  offer  Amber  Alerts 
across  the  country.  An 
Amber  Alert  is  an 
emergency  broadcast  to 
immediately  notify  a  community 
of  the  abduction  of  a  child. 


Getting  under  their  skin.  The  crime 

situation  has  gotten  so  bad  in  Mexico  that  the 
country’s  attorney  general  last  week  said  he  and 
some  members  of  his  staff  have  had  microchips 
embedded  in  their  arms  to  ensure  them  secure  access 
to  a  new  crime  database  and  let  authorities  track 
them  down  if  any  of  them  is  ever  abducted,  according 
to  a  Reuters  report.  Let's  just  hope  criminals  don’t 
figure  out  a  way  to  infect  the  chips  with  viruses.  > 


Phreak  out.  Tired  of  reading  about  phishing, 
denial-of-service  attacks,  viruses  and  other  modern 
network-based  criminal  schemes?  Well,  a  New  York 
man  has  been  indicted  for  allegedly  committing  a 
bit  of  a  throwback  crime:  phreaking,  or  breaking  into,  a 
Verizon  telephone  system  computer  used  to  turn  phone  service 
off  or  on.  Phreaking  used  to  be  all  the  rage,  but  that  was  back 
before  phone  calls  could  legitimately  be  had  for  free  or  pennies. 


Veritas  snaps  up  automation  software  maker 


■  Veritas  Software  has  acquired  process  automation  software  maker  Invio  for  $35  million. 
The  privately  held  company’s  software  lets  users  improve  IT  efficiency  by  automating  cer¬ 
tain  tasks.The  process  automation  technology  already  is  part  of  Veritas’ CommandCentral 
Service  4.0  product.  As  part  of  the  deal,  the  majority  of  Invio’s  workforce  of  35  will  become 
employees  of  Veritas. 


Netgear  recalls  defective  Ethernet  bridges 

■  Netgear  last  week  voluntarily  recalled  53,000  Wall  Plug  Ethernet  Bridges  because  of 
defective  plastic  casing.  According  to  the  U.S.  Consumer  Safety  Commission,  which 
announced  the  recall,  the  device’s  housing  can  come  loose  and  cause  an  electric  shock 
if  touched. The  bridge,  model  number  XW102,  was  sold  between  February  2003  and  May 
2004  for  between  $50  and  $80.  The  serial  numbers  of  affected  devices  are 
XE12A32LB000001  through  XE12A32LB005000  and  XE12134LB005021  through 
XE12143LB053586.The  bridge  connects  a  PC  or  other  Ethernet  device  to  a  home  or  small- 
office  broadband  connection  over  existing  power  lines. 


Microsoft  finds  search  company  attractive 

■  As  part  of  its  ongoing  investment  in  search  technology  Microsoft  last  week  acquired 
Lookout  Software,  a  two-person  company  specializing  in  e-mail  and  desktop  search. 
Lookout  offers  a  “personal  search  engine.”The  software  adds  a  search  bar  to  the  Microsoft 
Outlook  e-mail  client  that  lets  users  quickly  and  easily  search  through  their  e-mail  and 
their  computer,  according  to  the  Lookout  Web  site.  Details  of  the  transaction  were  not  dis- 
closed.“This  was  a  very  lucrative  transaction  for  us, and  we’re  very  happy  about  it,” says  Eric 
Hahn,  creator  of  the  first  Lookout  product  and  founder  and  financier  of  the  company. 


Need  for  RFID  privacy  law  debated 


A  federal  law  enforcing  privacy  rules  for  radio  frequency  identification  isn’t  needed 
because  companies  experimenting  with  the  technology  are  committed  to  protecting  pri¬ 
vacy,  two  such  corporations  told  a  U.S.  House  of  Representatives  subcommittee  last  week. 


More  than 
Voice  over  IP. 

Value  over  IP. 


Quickly  deliver  the  high-value  multimedia  services  customers  want  with  Lucent  Accelerate™  VoIP  solutions.  It’s  just  one 
of  our  seamless  solutions  for  next-generation  networks  that  can  help  you  develop  new  market  opportunities  to  grow  your 
business.  Lucent  does  more  than  build  networks.  We  leverage  our  understanding  of  your  customers  to  help  you  build 
demand  for  new  integrated  services  in  IP,  broadband  access,  3G,  metro  optical  and  more.  With  Bell  Labs  innovations,  the 
multi-vendor  network  know-how  of  Lucent  Worldwide  Services,  and  our  globally  proven  OSS  and  IT  management  software, 
we  can  demonstrate  a  faster  path  to  new  revenue.  See  how  partnering  with  Lucent  can  build  the  value  of  your  network 
at  www.lucent.com. 
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icrosoft  technology  needs  others'  help 


B  BY  JOHN  FONTANA 

Microsoft’s  jump  into  client  in¬ 
spection  and  isolation  technol¬ 
ogy  will  need  cooperation  with 
third  parties  and  integration  with 
multi-vendor  software  and  hard¬ 
ware  packages  for  customers  to 
see  the  full  benefits,  users  and 
analysts  say 

Microsoft  last  week  introduced 
Network  Access  Protection 
(NAP),  a  set  of  technologies  for 
creating  a  standards-based  mech¬ 
anism  to  verify  client  desktops 
are  securely  configured  with  up¬ 
dated  anti-virus  signatures  and 
patches  before  allowing  network 
access.  Microsoft  unveiled  a  set  of 
APIs  it  hopes  to  standardize,  a 
Policy  Connection  Server  that  will 
ship  next  year  in  an  upgraded  ver¬ 
sion  of  Windows  Server  2003  and 
25  partners  in  the  NAP  project, 
including  anti-virus,  firewall,  pol¬ 
icy  management,  patch  manage¬ 
ment  and  network  vendors. 

“As  long  as  Microsoft  just  talks 
about  APIs  it  will  help  the  market, 
but  if  they  start  to  talk  about  and 
build  products,  it  freezes  the  mar¬ 
ket,”  says  Pete  Lindstrom,  an  ana¬ 
lyst  with  Spire  Security  “There  is 
enough  skepticism  around  Micro¬ 
soft  security,  however,  that  there  J 
should  be  plenty  of  third-party 
software  to  provide  checks  and 
balances.” 

NAP  which  only  works  with 
Windows  XP  desktops,  is  strik¬ 
ingly  familiar  to  technology  Cisco 
unveiled  last  year  called  Network 
Admission  Control  (NAC). 
Initially  NAC  is  used  to  monitor 
compliance,  but  eventually  it  will 
evaluate  desktops  and  devices, 
provide  quarantine  services,  in¬ 
corporate  VPN  concentrators  and 
firewalls,  and  automatically  shut 
down  rogue  machines. 

Check  Point,  Citadel,  EndForce, 
Enterasys  Networks,  Sygate  and 
WholeSecurity  also  have  similar 
technology  to  control  misconfig-  \ 
ured  or  malicious  clients.  Sygate,  i 
EndForce  and  Enterasys  are  part¬ 
nering  with  Microsoft. 

Users  say  whatever  Microsoft’s 
ultimate  intentions,  the  NAP  tech¬ 
nology  must  work  with  more  than 
just  Windows-based  systems. 

“Anything  that  works  on  Micro- 


■  Find  out  if  Microsoft 
has  become  kinder  and 
gentler,  post  anti  trust. 
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soft  servers  is  all  well  and  good, 
but  that  doesn’t  cover  the  breadth 
of  our  corporate  network,”  says 
George  Defenbaugh,  manager  of 
global  IT  infrastructure  projects 
for  petroleum  company  Amerada 
Hess  in  Houston.  He  says  because 
Microsoft  is  not  considering  Linux 
and  Unix  platforms,  his  company 
is  evaluating  this  type  of  technol¬ 
ogy  at  the  router  level  because 
those  devices  ultimately  see  the 
entire  network. 

“But  we  would  like  to  use 
Microsoft’s  Active  Directory  as  the 
policy  repository  because  it  is  per¬ 
vasive  on  our  network,”  he  says. 

A  battle  for  control  seems  to  be 
brewing  between  Cisco  and 
Microsoft. 

“Microsoft  has  copied  Cisco’s 
strategy  announced  last  year,  and 
the  enterprise  may  get  stuck  in 
the  middle,”  says  John  Pescatore, 
an  analyst  with  Gartner.“They  will 
be  forced  to  interoperate  but  if  it 
takes  the  market  to  force  interop¬ 
erability  it  will  slow  down  this 
technology’ 

Microsoft  is  in  discussions  with 


Cisco  but  the  vendor  is  not  a  part¬ 
ner  in  NAP  according  to  Steve 
Anderson,  director  of  marketing 
for  Windows  server  at  Microsoft. 

However,  Pescatore  says  Micro¬ 
soft  and  Cisco  are  going  in  differ¬ 
ent  directions  —  with  the  imple¬ 
mentation  of  802. IX  and  the 
Protected  Extensible  Authentica¬ 
tion  Protocol  —  instead  of  mak¬ 
ing  them  compatible. 

Anti-virus  vendors  McAfee,  Sym¬ 
antec  and  Trend  Micro  have  part¬ 
nered  with  Cisco  and  Microsoft. 

Enterasys’  Trusted  End-System 
combines  the  vendor’s  hardware 
with  assessment  software  from 
Check  Point  and  Sygate.  McAfee 
has  worked  with  Nortel  and 
Check  Point  to  ensure  their  VPNs 
can  validate  that  a  user  has  the 
appropriate  anti-virus  signature 
updates  before  granting  access. 

The  Trusted  Computing  Group 
this  fall  plans  to  publish  a  techni¬ 
cal  specification  called  Trusted 
Network  Connect  for  use  in  multi¬ 
vendor  environments  for  compli¬ 
ance  checks  for  virus  and  patch 
updates.B 


Protecting  the  network 

Microsoft  last  week  introduced  its  Network  Access 
Protection  technology,  which  is  designed  to  keep 
infected  or  misconfigured  machines  off  a  network. 


Remote  user  requests 
access  to  network  and 
presents  a  health 
check  report. 
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Report  is  validated  against 
a  set  of  policy  servers. 
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Validated  machines  pass  onto 
the  corporate  network.Those 
that  fail  validation  are  sent 
to  a  restricted  zone. 
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Trio  ink  historic  IM  partnership 


■  BY  JOHN  FONTANA 

In  what  experts  are  calling  a  milestone  in  the 
evolution  of  corporate  instant  messaging, 
Microsoft,  AOL  and  Yahoo  formed  a  partner¬ 
ship  last  week  that  will  enable  Microsoft’s  Live 
Communications  Server  2005  to  work  with  the 
IM  services  offered  by  the  other  two. 

The  three  vendors,  which  have  become  the 
cornerstones  of  consumer  IM  services,  say 
interoperability  among  their  systems  will  only 
extend  to  corporate  use  of  IM  from  the  LCS 
platform.  It  will  not  integrate  their  consumer 
services,  which  all  run  on  closed  networks. 

Today  nearly  80%  of  corporate  IM  is  done 
over  public  IM  services  such  as  AOL,  MSN  and 
Yahoo,  exposing  companies  to  security  risks, 
according  to  the  Radicati  Group. 

Corporations  have  struggled  with  security 
and  how  to  use  existing  directory  name  space 
for  IM  so  they  can  track  users, instead  of  having 
separate  free-formed  IM  names  that  are  diffi¬ 
cult  to  associate  with  individuals. 

Those  issues,  and  the  concern  surrounding 
the  sharing  of  presence  information  and 
buddy  lists  outside  corporate  boundaries,  are 
at  the  heart  of  the  partnership,  experts  say 

Companies  that  deploy  Microsoft’s  LCS  2005, 
which  is  due  to  ship  by  year-end,  can  add  a 
connectivity  pack  module,  which  will  ship  in 
the  first  half  of  next  year,  that  lets  Microsoft  IM 
users  swap  messages  with  those  using  AOL 
Instant  Messenger,  AOL  ICQ, Yahoo  Messenger 
and  Microsoft’s  MSN  service. 


AOL  has  similar  integration  deals  with  Reu¬ 
ters  and  Apple,  but  this  is  the  first  deal  with 
Microsoft  since  AOL  shut  down  Microsoft’s 
unauthorized  attempts  to  integrate  its  MSN 
Messenger  with  the  AOL  buddy  list.  Bill  Gates  at 
that  time  asked  the  Federal  Trade  Commission 
during  the  AOL-Time  Warner  merger  to  require 
that  AOL  make  its  technology  compatible  with 
other  IM  services  as  part  of  the  deal. 

Pricing  for  those  modules  was  not  an¬ 
nounced.  Users  will  license  the  modules,  and 
Microsoft  will  provide  a  portion  of  the  rev¬ 
enue  to  AOL  and  Yahoo. 

AOL  says  it  will  act  as  a  clearinghouse  for 
LCS  users,  providing  routing  services  between 
users  and  protocol  translation  services. 

For  example,  LCS  uses  Session  Initiation  Pro¬ 
tocol  and  SIP  for  Instant  Messaging  and  Pres¬ 
ence  Leveraging  Extensions  (SIMPLE),  while 
AOL  uses  its  proprietary  protocol  called  Oscar. 

“This  is  a  huge  win  for  the  market  because 
enterprise  users  always  lost  out,”  says  Robert 
Mahowald,  an  analyst  with  IDC.  He  says  the 
only  caveat  concerns  companies  that  were 
not  included  —  IBM, with  its  IBM/Lotus  Instant 
Messaging,  and  Sun,  with  its  Java  System 
Instant  Messaging. 

An  IBM/Lotus  spokesman  says  the  company 
is  not  seeing  customer  demand  for  integration 
with  consumer  IM  networks. “The  demand  is 
to  integrate  IM  with  business  applications.” 

Mahowald  also  says  the  partnership,  which 
could  see  AOL  backing  SIP  and  SIMPLE,  pot¬ 
entially  might  take  some  air  out  of  the  IETFs 


other  IM  protocol,  the  Extensible  Messaging 
and  Presence  Protocol. 

Despite  those  issues,  some  in  the  industry 
say  the  Microsoft-AOL-Yahoo  partnership  fore¬ 
shadows  an  explosion  in  the  use  of  IM. 

“This  is  the  most  significant  event  in  instant 
messaging  since  it  emerged  on  the  Internet  in 
1996,”  says  Francis  deSouza,  CEO  of  IMlogic, 
which  makes  software  that  helps  companies 
manage  public  IM  services  use.“We  have  been 
waiting  for  eight  years  for  this  and  we  are  at 
the  kink  in  the  curve  to  explosive  growth.” 

Earlier  this  year,  AOL  and  Yahoo  dropped 
plans  to  provide  software  to  support  busi¬ 
ness-class  IM.  Experts  now  believe  those 
actions  might  have  been  taken  as  part  of 
the  negotiations  with  Microsoft  over  LCS 
interoperability.  ■ 


More  online! 


Listen  to  highlights  from  Mark  Gibbs'  keynote  presentation 
on  strategies  for  creating  a  messaging  environment  that 
ensures  network  integrity  and  user  productivity. 
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Healthcare  braces  for  federal  IT  czar 


m BY  DENI  CONNOR 

The  nation’s  first  healthcare  IT  czar  this 
week  is  expected  to  put  forth  a  plan  for 
modernizing  the  healthcare  system  —  an 
effort  IT  professionals  say  they  welcome 
despite  the  integration  headaches  and 
additional  costs  it  could  bring. 

Dr.  David  Brailer,  appointed  by  President 
Bush  in  May  as  National  Health  IT 
Coordinator,  is  set  to  unveil  his  plan  at  the 
National  Health  Information  Infrastruc¬ 
ture  conference  in  Washington,  D.C.The 
plan  is  expected  to  outline  a  method  for 
creating  an  electronic  medical  record 
(EMR)  for  patients  that  any  authorized  in¬ 
dividual  in  any  medical  organization  from 
any  location  can  view. 

“It’s  something  that’s  long  overdue,” says 
Christopher  Rose,  a  network  specialist  at 
Liberty  Hospitals  in  Missouri. “One  of  the 
largest  problems  we  face  in  delivering 
integrated  care  is  that  the  systems  we 
have  don’t  integrate  well  sometimes.This 
causes  a  lot  of  spending  for  interface 
building.” 

“At  a  high  level,  we  still  have  to  see  what 
the  requirements  are  for  this  plan,  the  im¬ 


plications  on  [Health  In¬ 
surance  Portability  and 
Accountability  Act] ,  the  com¬ 
mon  languages  and  how  we 
are  going  to  interface  [health 
information  systems],”  says 
Roland  Garcia,  CIO  of  Baptist 
Health  in  Jacksonville,  Fla. 

“There  are  still  a  lot  of  details 
that  need  to  be  defined.” 

The  plan  is  expected  to 
specify  how  organizations 
will  be  able  to  access  patient 
health  information,  how  that 
information  is  transmitted 
and  accessed  securely,  and 
how  software  from  different  vendors  is 
made  interoperable  so  all  information 
can  be  viewed  from  one  source. 

Madison  Mock,  CIO  for  the  Medical 
Center  of  Central  Georgia  in  Macon,  says 
that  setting  interoperability  standards 
between  health  information  systems  is 
essential. 

“You  need  to  set  some  standards  that 
everyone  adopts,”  Mock  says. 

Many  standards  are  already  in  place. 
Among  the  15  standards  outlined  by  the 


U.S.  Department  of  Health 
and  Human  Services  are 
Health  Level  7  (HL7),  a 
method  for  exchanging  clini¬ 
cal  data  between  diverse 
healthcare  information  sys¬ 
tems,  and  SNOMED  CT,  a 
standardized  medical 
vocabulary. 

However,  such  standards 
don’t  completely  solve  the 
problem  of  interoperable 
health  information  systems. 

“Even  the  HL7  standard  is  a 
little  loose  —  it  doesn’t  cover 
some  of  the  issues  of  sending 
image  data,”  says  Mark  Moroses,  senior 
director  of  technical  services  and  security 
officer  at  Maimonides  Medical  Center  in 
New  York. 

“In  imaging  there’s  a  push  toward 
DICOM2  systems,  but  it’s  not  accepted 
100%  across  radiology  systems.  There’s  a 
lot  of  questions  regarding  the  transmis¬ 
sion  format  and  the  file  format  and  how 
you  can  display  the  information,”  he  says. 

Another  issue  Brailer’s  plan  is  expected 
to  address  is  physician  adoption  of  EMR. 


Moving  to  EMR  for  many  medical  insti¬ 
tutions  is  a  generational  issue  —  older 
doctors  are  often  more  comfortable  hand 
writing  medical  instructions,  industry 
watchers  say. 

Some  physicians  and  healthcare  organi¬ 
zations  also  are  skeptical  about  the  imme¬ 
diate  financial  benefits  of  moving  to  EMR. 

“Most  institutions  have  started  to  [move 
to  EMR]  because  the  savings  in  creating 
an  electronic  medical  record  drives  down 
[medical]  errors,  which  ultimately  drives 
down  insurance  costs,”  Moroses  says.  “We 
were  able  to  lower  our  malpractice  insur¬ 
ance  and  [that]  of  our  doctors  because 
we  wiped  out  certain  medication  errors.” 

Not  that  adopting  new  health  informa¬ 
tion  systems  is  easy  or  inexpensive,  he 
says. 

“They  are  million-dollar  acquisitions,  so 
companies  aren’t  going  to  do  it  just  be¬ 
cause  the  government  says  they  should  in 
10  years,”  Moroses  says.“They  are  going  to 
wait  for  the  life  cycle  of  their  systems  to 
cycle  out  and  for  their  vendors  to  make 
revisions  to  include  the  functionality  out¬ 
lined  in  Brailer’s  plan.  That’s  not  going  to 
happen  overnight.”  ■ 


Dr.  David  Brailer  is  the 
nation's  first  healthcare 
IT  czar. 


Marriage  of  components  called  key  to  security 


■  BY  JOHN  FONTANA 

Regulatory  and  security  pres¬ 
sures  are  fueling  a  rush  to  turn 
directory,  identity  and  other  net¬ 
work  infrastructure  services  into 
components  that  provide  a  re¬ 
usable  security  layer  as  part  of  a 
service-oriented  architecture. 

That  reality  —  its  benefits,  risks 
and  challenges  —  will  be  the 
major  theme  at  this  week’s  annual 
Burton  Group  Catalyst  Confer¬ 
ence  in  San  Diego. 

The  idea  is  that  general-purpose 
infrastructure  pieces  such  as 
directory  and  identity  services, 
which  companies  have  been 
building  for  the  past  few  years, can 
be  made  available  as  components 
that  exist  alongside  application 
components  within  an  SOA.  The 
infrastructure  components  would 
make  it  easier  for  developers  to 
link  application  components  to 
security  services  on  a  network. 

“Infrastructure  architects  say, 
'we  built  it  and  they  did  not 
come,’  “  says  Jamie  Lewis,  presi¬ 
dent  of  Burton  Group. 
“Application  developers  say  the 
infrastructure  is  too  hard  to  use. 
They  say  their  [integrated  devel¬ 
opment  environment]  does  not 
allow  them  to  use  it.The  SOA  rep¬ 
resents  a  juncture,  an  opportunity 


Show  preview 

Burton  Group’s  annual  Catalyst  show  will  feature  a  slew  of  announcements  about  new 
and  upgraded  products. 


Vendor 

Product 

What  it  does 

Thor 

Identity  Manager  8.0 

Integration  with  various  Java  2  Platform  Enterprise  Edition 
application  servers. 

Password  Manager  8.0 

Self-service  reset;  password  sync  with  Active  Directory. 

Audit  &  Compliance  Manager  8.0 

User  auditing  and  reporting. 

Oblix 

Core  ID  7.0 

Enhanced  with  built-in  provisioning  capabilities. 

Core  SV 

First  Web  services  management  product  since  acquisition 
of  Confluent. 

Courion 

ComplianceCourie 

Software  to  adhere  to  regulatory  compliance.  Now  part  of 
Identity  Management  Suite  7.0. 

ASG 

ASG-GlobalTrust 

Web  access  management  software. 

MaxWare 

Dynamic  Identity  Store 

Persistent  and  virtual  storing  of  identity  data. 

Virtual  Policy  Server 

Virtual  access  to  policies  from  disparate  data  sources. 

Netegrity 

SiteMinder 

Integrated  access  management  software  with  Ping  ID  and 
Trustgenix. 

to  change  the  way  we  do  things 
and  get  better  security’ 

Lewis  says  the  emergence  of 
SOA  design  principles, namely  the 
loose  coupling  of  components,  in 
combination  with  standard  Web 
services  protocols  and  interfaces, 
will  let  infrastructure  services, 
such  as  access  management,  pro¬ 
visioning  and  federated  identity 
management,  be  available  to  ap¬ 


plications  consistently. 

“The  concept  of  SOA  is  provid¬ 
ing  something  that  has  been  des¬ 
perately  needed  for  a  long  time, 
which  is  a  way  to  have  a  consis¬ 
tent  framework  for  exposing  and 
using  general-purpose  infrastruc¬ 
ture-level  services,”  Lewis  says. 

Burton  Group  calls  the  concept 
its  Infrastructure  Services  Model. 

“We  have  seen  a  lot  of  progress 


with  the  [Security  Assertion 
Markup  Language]  .basic  Web  ser¬ 
vices  standards  and  interest  in 
SOA,”  Lewis  says.  “But  this  is  far 
from  a  done  deal.” 

Still  needed  is  a  standard  appli¬ 
cation  development  framework 
that  infrastructure  components 
can  plug  into.  Also  lacking  is  a 
more  mature  lineup  of  Web  ser¬ 
vices  security  standards  beyond 


WS-Security 

Another  key  will  be  conver¬ 
gence  among  current  efforts  to 
create  federated  identity  stan¬ 
dards,  namely  Liberty  Alliance, 
SAML  and  WS-Federation,  which 
Microsoft  and  IBM  are  developing. 

The  Catalyst  Conference  will  be 
the  site  of  a  Liberty  Alliance  inter¬ 
operability  demonstration  includ¬ 
ing  implementations  from  various 
vendors, but  the  test  won’t  include 
WS-Federation  implementations. 

Lewis  also  says  there  will  have 
to  be  standards  for  federated  trust 
models  and  a  standard  policy  lan¬ 
guage  that  dictates  how  users  in¬ 
teract  with  application  and  infra¬ 
structure  components. 

“This  is  a  policy-driven  model,” 
Lewis  says.  “When  you  look  at 
SOA,  what  drives  the  interaction  of 
components  is  a  well  understood, 
standardized  policy  framework.” 

Lewis  says  it  will  take  time  to 
work  out  all  the  issues. 

“There  is  room  for  cautious  opti¬ 
mism  about  our  ability  to  tackle 
these  problems,”  he  says.“It  will  be 
the  end  of  this  decade  before 
many  of  these  things  are  part  of 
the  way  we  do  things  day  to  day 
But  the  trends  are  pretty  clear  be¬ 
cause  business  needs  are  forcing 
the  solutions  in  a  way  that  only 
strong  market  demand  can."B 
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Cisco  names  new 
CTO,  shifts  execs 

3  BY  JIM  DUFFY 

In  an  effort  to  better  communicate  its  technology  strategy  and  direc¬ 
tions,  Cisco  last  week  named  veteran  executive  Charlie  Giancarlo  as 
the  third  CTO  in  the  company’s  history 
At  the  same  time,  Cisco  shuffled  some  of  the  executives  under  the 
direction  of  Chief  Development  Officer  Mario  Mazzola  to  better 
address  key  markets  and  customer  requirements.  Analysts  say  Cisco 
customers  might  gain  more  input  and  clarity  into  the  company’s  direc¬ 
tions,  but  beyond  that  the  reorganization  means  business  as  usual. 

“You  still  have  the  same  people  running  the  show”  says  Dave 
Passmore,  research  director  at  Burton  Group.  “It’s  also  interesting  that 
they  decided  to  reconstitute  the  CTO  position  after  four  years  of 
vacancy  They  [might  have]  thought  it  was  necessary  to  better  coordi¬ 
nate  all  of  the  development  activities  at  Cisco.” 

Giancarlo  had  been  co-leader  of  network  switching,  one  of  Cisco’s 
core  technologies,  as  well  as  several  advanced  technologies,  includ¬ 
ing  voice,  storage  networking  and  network  security.  He  also  is  presi¬ 
dent  of  Cisco-Linksys,  Cisco’s  home  network  subsidiary 
As  CTO,  Giancarlo  will  be  responsible  for  contributing  to  and  com- 


Veteran  executive  Charlie  Giancarlo  (left)  last  week  became  the  third  CTO  in  Cisco's 
history.  Meanwhile,  Cisco  reshuffled  the  executives  and  groups  that  report  to  the 
company's  Chief  Development  Officer  Mario  Mazzola  (right).  For  example,  the  newly 
formed  Security  Technology  Group  now  reports  to  Mazzola. 


municating  Cisco’s  technology  strategy,  and  managing  Cisco’s  Global 
Government  Solutions  Group.  He  will  continue  to  be  president  of 
Cisco-Linksys  and  lead  the  company’s  voice  endeavors. 

Serial  entrepreneur  Judy  Estrin  was  Cisco’s  CTO  from  1998  to  2000, 
and  Ed  Kozel  was  the  company’s  first  CTO,  serving  from  1990  to  1998. 

Cisco  decided  to  reactivate  the  CTO  position  in  an  effort  to  better 
communicate  its  business  and  technology  strategies  internally  and 
externally,  a  company  spokesman  says. 

The  reshuffling  of  Mazzola’s  technology  organization  includes: 

•  Jayshree  Ullal,  senior  vice  president,  will  lead  the  newly  formed 
Security  Technology  Group.  Previously,  Ullal  ran  Cisco’s  Optical  and 
Broadband  Transport  group. 

•  Luca  Cafiero,  senior  vice  president,  will  lead  the  newly  formed 
Data  Center,  Storage,  Switching  and  Wireless  Technology  Group. 

•  Replacing  Ullal  in  Optical  and  Broadband  Transport  is  Vice 
President  and  General  Manager  Kambiz  Hooshmand.  He  had  shared 
responsibility  for  Cisco’s  Carrier  Core  Multiservice  business  unit  with 
Vice  President  and  General  Manager  Tony  Bates. 

•  Bates  now  will  have  sole  responsibility  for  the  Carrier  Core 
Multiservice  business  unit,  continuing  to  report  to  Prem  Jain  and 
MikeVolpi.both  senior  vice  presidents  of  Cisco’s  Routing  Technology 
Group. 

•  Kathy  Hill,  vice  president  and  general  manager,  will  oversee 
Cisco’s  newly  formed  Mid-range  and  Stackable  Switching  Technology 
Group.  Hill  had  reported  to  Larry  Birenbaum,  senior  vice  president 
and  general  manager  of  Cisco’s  Ethernet  Access  group,  who  has  taken 
a  "long  planned,  well-deserved”  sabbatical,  the  spokesman  says.  Hill 
had  been  vice  president  and  general  manager  of  Ciscos  Desktop 
Switching  business  unit.  ■ 


What  Leucadia’s  overture 
toward  MCI  really  means 


■  AT  A  GLANCE: 

LEUCADIA  NATIONAL 

Headquarters: 

New  York,  Salt  Lake  City 

Founded: 

1968 

Business: 

A  holding  company  in  several  industries,  including 
lending,  manufacturing,  copper  mining  and  wine 
making. 

Management: 

Ian  Cumming,  chairman  and  CEO 

Revenue: 

s _ 

$511.8  million  in  first  quarter. 

■  BY  DENISE  PAPPALARDO 

Leucadia  National,  a  holding 
company  last  week  was  revealed 
to  be  seeking  approval  to  pur¬ 
chase  at  least  half  of  MCI’s  stock. 
MCI  made  this  announcement 
just  two  days  before  its  stock 
(MCIP)  resumed  trading  on 
Nasdaq  after  a  two-year  absence. 
What  follows  are  key  questions 
and  answers  regarding  this  move 
and  what  it  means  to  MCI  cus¬ 
tomers  and  the  telecom  industry 

What  is  Leucadia? 

It’s  a  financial  conglomerate 
based  in  New  York  with  interests 
in  a  variety  of  industries,  includ¬ 
ing  banking,  healthcare  services 
and  telecom.The  company  keeps 
details  about  its  businesses  close 
to  the  vest.  In  fact,  the  company’s 
Web  site  is  little  more  than  a  list¬ 
ing  of  Securities  and  Exchange 
Commission  documents.  But  this 
isn’t  the  holding  company’s  first 
foray  into  telecom.  Last  year  it 
acquired  telecom  company 
WilTel  Communications  in  a 
stock  swap  deal  valued  at  about 
$420  million  after  it  emerged 
from  bankruptcy  protection. 
WilTel  operates  as  a  wholly 
owned  subsidiary 

Is  Leucadia  taking  over  MCI? 

No,  but  it  might  try.  The  com¬ 
pany  is  only  seeking  federal 
approval  to  purchase  at  least  half 
of  the  carrier’s  stock.  But 
approval  doesn’t  mean  there  will 
be  further  action  on  Leucadia’s 
part.  The  company  might  actual¬ 
ly  do  nothing.  But  several  finan¬ 
cial  analysts  have  speculated 
that  Leucadia’s  initiative  might 
open  the  floodgates  to  other 
potential  buyers.  Some  have 
speculated  that  an  incumbent 
local  exchange  carrier  or  inter¬ 
national  service  provider  might 
also  try  to  make  a  move  to 
acquire  MCI. Those  sitting  on  the 
sidelines  watching  how  the  carri¬ 


er  fared  after  emerging  from 
bankruptcy  in  April  might  now 
feel  compelled  to  get  an  acquisi¬ 
tion  plan  in  place. 

MCI  just  came  out  of  bankruptcy 
and  has  falling  revenue.  Why  is  the 
company  viewed  as  a  takeover 
target? 

It’s  true  that  MCI’s  revenue  is  ex¬ 
pected  to  be  down  at  least  $4.4 
billion  compared  with  2003, 
when  the  company  reported 
$24.4  billion  in  annual  revenue. 
MCI,  like  competitors  AT&T  and 
Sprint,  is  struggling  to  generate 
revenue  in  a  fiercely  competitive 
market  suffering  continued  ser¬ 
vice  price  declines.  That  said, 
MCI  has  20  million  customers, 
national  voice,  data  and  Internet 
networks  —  and  cash.  Financial 
analysts  have  speculated  that  the 
company’s  stockpile  of  about 
$4.4  billion  might  be  what’s 
attracting  Leucadia. 

If  Leucadia  does  buy  a  controlling 
interest  will  that  affect  MCI 
customers? 

It  depends  on  what  Leucadia 
does  with  the  assets.  Some  have 
speculated  the  company  would 
sell  off  parts  of  MCI’s  business. 
This  would  mean  uncertainty  for 
customers.  Or  the  company 
might  want  to  merge  MCI  with 
WilTel  and  integrate  MCI  and 
WilTel’s  disparate  networks. 
Chances  are  most  services 


would  stay  intact,  especially  if 
those  services  are  IP-based. 

If  any  company  buys  MCI,  it 
could  trigger  further  consolida¬ 
tion  in  the  industry  While  finan¬ 
cial  analysts  say  it’s  needed,  con¬ 
solidation  will  affect  prices. 
Fewer  players  will  result  in  price 
stabilization  or  increases  after 
nearly  three  years  of  declines. 

Has  Leucadia  made  drastic  changes 
at  WilTel? 

From  the  outside,  it  appears 
that  Leucadia  doesn’t  have 
much  involvement  in  WilTel’s 
day-to-day  activities.  It’s  even  dif¬ 
ficult  to  find  references  to 
WilTel’s  parent  company  on  its 
Web  site.  But  shortly  after 
Leucadia  acquired  the  company 
WilTel  expanded  its  service  offer¬ 
ings  to  enterprise  business  users 
after  years  of  only  offering 
wholesale  services.  This  is  a  sig¬ 
nificant  shift,  but  it  is  not  clear 
that  the  push  came  from 
Leucadia.  But  with  MCI  in  its  sta¬ 
ble,  it  would  have  a  company 
that  successfully  can  support 
business  users.  Two  of  the  main 
criticisms  of  WilTel’s  move  to 
offer  business  services  were  its 
lack  of  brand  recognition  and  its 
extremely  small  sales  force. 
Neither  can  be  said  of  MCI. 

Does  MCI  have  a  say  if  Leucadia 
does  make  a  move  to  buy  more 
than  half  of  its  stock? 

In  April  MCI  put  a  Shareholders 
Rights  Plan  in  place,  which 
essentially  acts  as  a  poison  pill 
to  thwart  a  hostile  takeover 
attempt.  If  Leucadia, or  any  other 
company,  acquires  more  than 
15%  of  the  company’s  stock  it 
can  make  common  stock  avail¬ 
able  to  its  shareholders  at  a 
reduced  price.  This  would  make 
the  acquisition  more  expensive 
for  the  acquirer  * 


Corrections 


■The  photo  that  accompanied  the  story  "Siemens  exec  talks  up  VoIP" 
%  (July  12,  page  17)  was  incorrect.  Instead  of  a  photo  of  Andy  Mattes, 
CEO  of  Siemens  ICN,  what  appeared  was  one  of  Mark  Stratton,  senior 
vice  president  of  global  marketing  for  Siemens  ICN. 

■  The  story  "Tools  help  manage  domain  names"  (July  12,  page  21) 

|  should  have  stated  that  Iron  Port  bought  Arcemus. 


Chances  are  you  won’t  get  fired  for  buying  an  IPSec  or  SSL  VPN. 

Here’s  why  you  should  be. 


lour  boss  hired  you  for  two  reasons.  One:  to  make  bold  decisions  that  improve  productivity.  Two:  to  make  your  boss  look  good.  Achieve 
both  goals  by  choosing  a  Net6  Hybrid-VPN.  Unlike  IPSec  VPNs,  it  provides  users  with  remote  access  through  firewalls,  prevents  the  traversal 
of  worms,  and  practically  eliminates  client  maintenance  costs.  And  SSL-VPN  weaknesses?  They’re  history.  Our  Hybrid-VPN  Gateway  supports 
all  applications  right  out  of  the  box.  No  changes,  costly  connectors  or  webification  needed.  Now  you  have  a  decision  to  make.  Tell  your  boss 
you’re  buying  a  Net6  Hybrid-VPN.  Or  buy  a  traditional  VPN  and  hope  he  never  reads  this  ad.  To  learn  more,  visit  WWW.net6. Com/hybrid 
and  request  the  Hybrid-VPN  technical  white  paper. 


1 


Net6 


C  2004  Net6  and  Net6  Hybrid-VPN  Gateway  are  trademarks  of  Net6,  Inc. 
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NetScout 
to  monitor 
aggregated 
WAN  links 

B  BY  DENISE  DUBIE 

NetScout  this  week  plans  to 
announce  an  appliance  de¬ 
signed  to  give  customers  a  bet¬ 
ter  view  of  traffic  crossing  aggre¬ 
gated  WAN  links. 

NetScout’s  nGenius  IMA  Probe 
works  with  the  company’s 
nGenius  Performance  Manager 
software  to  track  application 
bandwidth  consumption,  traffic 
patterns  and  end-user  activities 
on  Inverse  Multiplexing  over 
ATM  (IMA)  networks.  IMA  lets 
companies  with  growing  net¬ 
work  traffic  forestall  upgrading  to 
a  T-3  line  by  bundling  four  to 
eight  T-l  links,  but  the  downside 
is  that  it’s  harder  to  view  traffic 
patterns  on  these  consolidated 
pipes. 

Jim  Mileski,  a  systems  adminis¬ 
trator  at  Financial  Partners  in 
Agawam,  Mass.,  has  been  using 
the  new  probe  for  a  few  months 
and  says  it  has  made  it  easier  for 
his  team  to  manage  IMA  con¬ 
nections  used  to  support  the 
financial  outfit’s  54  branches. 

“We  had  to  put  together  a 
bunch  of  homegrown  applica¬ 
tions  to  verify  some  of  the  bare- 
bones  data  we  needed,  but  for 
the  most  part,  we  lost  all  visibility 
of  Layer  5,6  and  7  traffic,”  he  says. 

Mileski  says  the  NetScout 
probe  helps  him  get  a  better 
feel  for  how  network  links  are 
being  used  by  employees  and 
whether  applications  are  con¬ 
figured  correctly. 

“We  spotted  an  application 
making  inaccurate  SQL  queries,” 
he  says. 

Information  the  probe  collects 
can  be  used  to  help  plan  where 
bandwidth  needs  to  be  allocated 
and  how  to  better  route  applica¬ 
tion  traffic. 

The  nGenius  IMA  Probe  uses  a 
passive  tap  to  connect  to  a  WAN 
link  and  make  a  copy  of  the  traf¬ 
fic,  which  is  fed  to  the  probe  and 
forwarded  to  NetScout’s  nGen¬ 
ius  Performance  Manager  soft¬ 
ware. 

The  software,  which  performs 
analysis  and  generates  reports,  is 
installed  on  a  dedicated  server 
and  can  be  accessed  via  a  Web 
browser. 

The  probe  costs  about  $23,000. 
The  nGenius  Performance  Man¬ 
ager  costs  about  $50,000.  B 


SWsoft  offering  divvies  up  server  mgmt 


fl  BY  DENI  CONNOR 

SWsoft  last  week  unveiled  an 
upgraded  version  of  its  virtual¬ 
ization  software  that  gives  users 
more  control  over  server-based 
resources. 

The  Virtuozzo  software  lets  cus¬ 
tomers  divvy  up  a  server  and 
create  virtual  private  servers 
(VPS)  that  can  run  multiple 
instances  of  the  same  operating 
system.  In  a  Virtuozzo  environ¬ 
ment,  each  application  appears 
to  have  its  own  processes,  users 
and  files.  Each  VPS  can  be  con¬ 
figured  uniquely  with  applica¬ 
tions  and  system  hardware  and 
use  different  instances  of  the 
same  operating  system. 

Among  the  new  features  of 
Virtuozzo  2.6  are  integration  with 
the  company’s  Plesk  Control 
Panel  and  new  Web-based  tools 
that  let  administrators  start  or 


Virtual  machine  technology 

A  bevy  of  server  virtualization  products  are  hitting  the  market  Here  is  how  SWsoft  stacks  up: 


Company  and  product 

Operating 

environments 

Function 

Availability 

EMC'sVMware  ESX 
Server 

Windows,  Linux, 
NetWare,  FreeBSD, 

Lets  users  partition  a  server  and  run 
different  operating  systems. 

Now 

Microsoft's  Virtual  Server 
2005 

Windows 

Lets  users  partition  a  server  and  run 
different  Windows  operating  systems. 

In  beta 

Positive  Software's 
FreeVPS 

Linux 

Allows  partitioning  of  a  server 
operating  system. 

Now 

SWsoft's  Virtuozzo 

Linux  and  FreeBSD 

Allows  partitioning  of  a  server 
operating  system. 

Now 

Solaris  and  Windows 

Expected  in  August 

stop  a  server,  back  up  and  restore 
a  server,  and  perform  other  man¬ 
agement  tasks.  Plesk  is  manage¬ 
ment  software  for  Windows, 
Linux  or  Unix  that  lets  adminis¬ 
trators  provision  applications  and 
operating  systems  to  servers. 


Virtuozzo  could  be  beneficial 
to  Web  hosting  companies  be¬ 
cause  of  its  ability  to  support 
multiple  customers  on  one  serv¬ 
er,  says  Jason  Bourne,  a  com¬ 
mand,  control  and  communica¬ 
tions  systems  engineer  for 


Group  tackles  interoperability 
to  give  MPLS  needed  boost 


B  BY  TIM  GREENE 

Industry  groups  MPLS  &  Frame 
Relay  Alliance  and  the  ATM 
Forum  have  agreed  to  become 
one,  a  move  leaders  of  the  groups 
say  will  hasten  much-needed 
Multi-protocol  Label  Switching 
services  work  by  focusing  more 
attention  on  solving  specific 
interoperability  problems. 

In  announcing  the  marriage, the 
forums  last  week  also  said  that 
the  Service  Provider  Council 
within  the  MPLS  &  Frame  Relay 
Alliance  has  issued  a  list  of  tech¬ 
nical  issues  that  it  wants  resolved. 

“It’s  the  real-world  stuff  we  have  to 
deal  with  in  a  multi-vendor  envi¬ 
ronment,”  says  Doug  O’Leary, 
chairman  of  the  Service  Provider 
Council  and  the  director  of  enterprise  solutions 
technology  for  Verizon. 

For  example,  providers  want  standards  that  enable 
operations,  administration  and  maintenance  com¬ 
patibility  among  frame  relay  ATM  and  MPLS  gear  to 
address  practical  features  such  as  latency  packet  loss 
and  jitter  guarantees  for  carriers  to  offer  to  cus- 
tomers.“We  want  the  ability  to  monitor  and  maintain 
the  network  end  to  end,  not  only  for  our  own  sanity 
but  for  service-level  agreements,”  O’Leary  says. 

The  providers  want  standards  to  smooth  the  inter¬ 
operability  of  technologies  and  to  promote  interop¬ 
erability  among  devices  made  by  different  vendors 
that  support  the  same  technology.This  interoperabil¬ 
ity  is  key  to  maintaining  carriers’  basic  tenet  that 
they  rely  on  no  single  vendor  to  provide  their  net- 


Packet  evolution 

As  new  packet  tech¬ 
nologies  come  along, 
the  advocacy  groups  that 
support  them  change. 

1990  Frame  Relay  Forum 
founded. 

1991  ATM  Forum  formed. 

2000  MPLS  Forum 
founded. 

2003  MPLS  and  Frame 
Relay  forums  merge. 

2004  ATM  Forum  and  MPLS 
&  Frame  Relay  Alliance  plan 
merger. 


work  infrastructure,  he  says. 

Interoperability  is  key  because 
major  carriers  have  committed 
themselves  financially  to  MPLS- 
based  networks  and  must  drive 
them  to  mature  as  quickly  as 
possible. 

While  the  yet-to-be-named 
merged  industry  group  won’t  have 
the  authority  to  create  standards, 
its  recommendations,  known  as 
implementation  agreements,  will 
likely  become  the  basis  for  stan¬ 
dards  approved  by  other  groups, 
says  Erin  Dunn,  director  of  re¬ 
search  services  for  Vertical  Systems 
Group.“The  IETF  the  [International 
Telecommunication  Union],  the 
[Institute  for  Electrical  and  Elec¬ 
tronics  Engineers]  need  these 
feeder  groups  to  send  them  imple¬ 
mentation  agreements,”  Dunn  says. 

This  is  even  more  important  as  IP-based  services 
cut  into  frame  relay  Dunn  says.  While  frame  relay 
dominates  data  services  in  the  U.S.  —  totaling  $9.2 
billion  last  year — and  is  still  growing,  its  dominance 
is  starting  to  wane,  according  to  Vertical  Systems. 
Carriers  need  MPLS  prepared  to  handle  IP  services 
customers  demand, she  says. 

Despite  the  march  toward  MPLS  and  IP  services, 
frame  relay  will  continue  to  dominate  data  services 
through  2008,  Dunn  says,  but  increasingly  frame 
relay  services  will  run  over  MPLS  backbones,  which 
could  arguably  make  them  MPLS  services.These  ser¬ 
vices  also  will  exhibit  features  more  akin  to  IP  than 
frame  relay,  such  as  any-to-any  connectivity  without 
need  for  virtual  circuits.  ■ 


CompuLogica,  a  consultancy  in 
Sittard,  the  Netherlands.  He  says 
CompuLogica  is  beta-testing  the 
most  recent  version  of  Virtuozzo. 

“If  you  are  a  Web  hosting  com¬ 
pany  focused  on  small  to  medi¬ 
um  business  segments,  you  can 
use  Virtuozzo  to  host  Web  appli¬ 
cations  without  investing  in  re¬ 
dundant  hardware  infrastruc¬ 
tures,”  Bourne  says.  “You  have 
one  physical  machine  that  hosts 
50  virtual  environments.  On 
each  of  those  50  environments 
you  can  run  100  to  150  shared 
accounts.” 

The  company  also  has  added  a 
new  model  for  memory  man¬ 
agement  and  improved  CPU  uti¬ 
lization  that  provides  twice  as 
many  VPSs  and  twice  the  perfor¬ 
mance  of  previous  versions.  With 
a  newVzcache  utility  IT  adminis¬ 
trators  can  create  templates  for 
common  VPS  files,  establish  file 
sharing,  and  save  disk  and  mem¬ 
ory  usage  on  the  server.  Further, 
VPSs  can  be  provisioned  and 
configured  with  a  click  of  a 
mouse. 

Virtuozzo  currently  runs  on  Red 
Hat,  SuSE  Linux  and  FreeBSD. 
SWsoft  says  it  next  month  will 
introduce  32-  and  64-bit  versions 
that  will  virtualize  Windows  and 
Solaris  server  environments. 
Virtuozzo  2.6  starts  at  $300  per 
uni-processor  server. 

There’s  lots  of  interest  in  virtu¬ 
alized  server  environments  as 
users  try  to  consolidate  server 
operations  and  enhance  man¬ 
agement  capabilities.  In  Febru¬ 
ary  2003,  Microsoft  acquired 
Connectix,  a  company  that 
made  a  virtual  machine  envi¬ 
ronment  for  Windows,  Linux  and 
Macintosh.  The  company  re¬ 
leased  Microsoft  Virtual  PC  2004 
in  December. Virtual  PC  2004  lets 
administrators  run  multiple 
Windows  operating  systems  on 
one  workstation.  ■ 


companies  using 
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Companies  adopting  HP  Integrity  servers,  powered  by  industry-leading  Intel  Itanium  2  processors,  are  seeing 

remarkable  gains  in  performance.  The  momentum  is  building.  One  after  another,  companies  are  choosing  HP  Integrity  servers.  Leading  software 
and  technology  partners  such  as  BEA,  Microsoft®  Oracle,  SAP  and  Siebel  Systems  have  embraced  the  platform  as  an  industry  standard.  And  with  the  ability 
to  manage  a  mixed  environment  of  UNIX,  Microsoft®  Windows®  Linux  and  OpenVMS,  HP  Integrity  servers  are  fast  becoming  the  ultimate  consolidation  tool. 
Demand  maximum  performance,  reliability  and  cost-efficiency  now,  on  a  platform  that  will  carry  you  forward  into  the  future.  Demand  performance  that's 
real-world  proven,  and  get  it— with  HP  Integrity  server  solutions. 


Choosing  HP  Integrity  servers,  choosing  results. 


AIRBUS  UK: 

Running  HP-UXlli 
on  HP  Integrity  servers, 
20-30  wing  design 
simulations  that  used 
to  take  weeks  are 
now  done  overnight. 


COMPUSA: 

Going  with  64-bit 
architecture  using  HP 
Integrity  servers,  they 
cut  access  time  to 
inventory  data  by  up 
to  85%. 


FIAT  AUTO: 
Standardizing  on  64-bit 
infrastructure  using  HP 
Integrity  servers,  they're 
integrating  and  enhancing 
sales  and  service  as  well 
as  streamlining  the  buying 
process  while  lowering 
sales  cost. 


THE  KOEHLER  GROUP: 

Moving  to  an  environment 
composed  of  HP  Integrity 
servers,  they  gained 
a  50%  improvement  in 
mission-critical  performance. 


invent 


To  get  the  IDC  white  paper  outlining  the  performance  of  HP  Integrity  servers  with  Intel  Itanium  2  'IM 
processors,  go  to  hp.com/go/demandlntegrity6  or  call  1-800-282-6672,  option  5,  mention  code  AQHG’.;  ;  4.^ 


Intel,  Intel  Inside,  the  Intel  Inside  Logo  and  Itanium  are  trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsidiaries  in  the  U.S,  and  other  countries.  Microsoft  and  Windows  are  either  registered  trademarks  or  trademarks  of  Microsoft  Corporation 

©2004  Hewlett-Packard  Development  Company,  L.P. 
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RF  tools 

continued  from  page  1 

physically  attached  via  a  wire  to 
the  network. 

These  new  products  use  radios 
to  scan  the  air,  pull  data  from  the 
radio  chipsets  in  WLAN  devices, 
and  expose  via  GUI  displays  and 
alarms  what’s  happening  on  the 
Layer  1  wireless  connection.  As 
such,  they  go  beyond  the  capa¬ 
bilities  of  expensive,  specialized 
and  bulky  wireless  protocol  ana¬ 
lyzers  and  spectrum  analyzers 
traditionally  used  in  wireless 
engineering. 

These  RF  tools  let  administra¬ 
tors  see  details  such  as  IP  head¬ 
ers,  identify  new  devices  that 
start  transmitting,  measure  the 
signal  strength  and  radio  power 
settings  of  access  points  and 
client  network  interface  cards, 
check  if  Wired  Equivalent  Priv¬ 
acy  or  other  encryption  options 
are  turned  on,  detect  man-in-the- 
middle  attacks  and  identify  elec¬ 
tro-magnetic  interference. 

Much  of  this  data  can  be 
passed  to  enterprise  network 
management  applications  such 
as  HP’s  OpenView  via  SNMP 
These  RF  tools  let  network  man¬ 
agers  make  changes  such  as 
adjust  the  radio  power  level,  or 
block  access  to  a  rogue  access 
point,  or  force  some  clients  to 
disassociate  from  one  access 
point  and  reconnect  to  another 
to  balance  traffic  loads  and 
improve  throughput. 

New  products 

The  newest  products  range 
from  full-blown  RF  management 
systems,  to  offerings  sized  for 
either  small  or  large  WLANs,  to 
incremental  improvements  in 
existing  products.  The  products 
include: 

•  Bluesocket’s  BlueSecure  is  a 
stand-alone  monitoring  system 
with  dedicated  sensors  that  read 
traffic  on  802.11a,  b  and  g  net¬ 
works,  and  that  do  some  initial 
data  processing.  It  supports 
Power  over  Ethernet. 

The  ratio  of  sensors  to  access 


points  changes  depending  on 
variables  such  as  the  number  of 
users  and  the  proximity  of 
access  points:  One  sensor  for 
every  three  to  six  access  points  is 
the  rule  of  thumb. 

The  BlueSecure  Server  applica¬ 
tion,  with  a  GUI,  collects,  ana¬ 
lyzes  and  presents  the  data  and 
lets  network  managers  configure 
alarms.  It  runs  on  Windows  XP  or 
2000.The  new  product  for  now  is 
completely  separate  from  the 
vendor’s  flagship  WLAN  security 
gateway 

BlueSecure  sensors  cost  $695. 
The  server  software  costs  $3,000. 
It  is  scheduled  to  be  released 
next  month. 

•  Highwall’s  Model  500  Sent¬ 
inel  mimics  the  higher-end 
Model  lOOO.The  main  difference 
is  that  the  500  incorporates  a  sin¬ 
gle  sensor,  whereas  the  high-end 
model  can  connect  to  many, 
dubbed  Highwall  Scouts. 

The  idea  is  that  one  Model  500 
box  can  cover  all  or  most  of  a 
single  office  or  small  business, 
largely  because  of  the  compa¬ 
ny’s  own  antenna  design.  Soft¬ 
ware  settings  can  change  the 
size  and  shape  of  the  antenna’s 
scanning  area, and  Highwall  says 
the  design  boosts  the  accuracy 
of  identifying  the  locations  of 
WLAN  devices. 

The  price  is  $1,500,  or  half  the 
price  of  the  Model  1000. 

•  AirMagnet  Mobile  Suite  4.0’s 
newly  incorporated  policy  man¬ 
ager  lets  administrators  specify 
rules  —  such  as  wireless  clients 
must  use  a  VPN  session  —  and 
then  track  network  activity 
against  them.  The  software  can 
capture  intrusion  attempts,  subdi¬ 
vide  them  into  classes  of  attacks 
and  show  their  frequency 

Other  changes  include  code  to 
minimize  signal  fluctuations  and 
track  handoffs  between  access 
points,  both  aimed  at  diagnosing 
radio  problems  around  wireless 
VoIP  traffic. 

Earlier  this  year,  AirMagnet 
introduced  products  for  moni¬ 
toring  Bluetooth  radios.  Version 
4.0  software  runs  on  laptops  or 


PDAs,  which  network  techni¬ 
cians  carry  to  study  RF  activity 
throughout  a  WLAN  site. 

The  price  is  $3,500  for  the  lap¬ 
top  version,  $3,000  for  the  PDA. 
(AirMagnet  Distributed  is  a  sen¬ 
sor-based  product  with  server 
software  and  management  GUI.) 

•  Meru  Networks  is  announc¬ 
ing  Version  2.0  of  its  System 
Director  software,  which  runs  on 
its  WLAN  switches.  The  new 
release  includes  an  updated 
and  more  automated  user  inter¬ 
face  for  the  Meru  WLAN  man¬ 
agement  software. 

That  program  reads  the  radio 
activity  of  Meru  access  points 
and  then  automatically  config¬ 
ures  each  of  those  devices, 
including  radio  channel  assign¬ 
ments  for  the  entire  WLAN, 
based  on  one  of  several  WLAN 
profiles  selected  by  an  adminis¬ 
trator.  The  new  version  ships  on 
the  switch  product. 

•  Network  Chemistry’s  recently 
unveiled  RFprotect  (see  story  at 
www.nwfusion.com,  DocFinder: 
2955)  is  scheduled  to  begin  ship¬ 
ping  this  month,  with  RF  sensors 
and  client/server  software  de¬ 
signed  for  large-scale  WLANs. 

Many  of  these  features  are 
offered  in  WLAN  switches  from 
Aruba  Wireless  Networks,  Aire- 
space  and  others.  These  vendors 
typically  use  their  companion 
thin  access  points  as  the  RF  sen- 
sors:The  access  point  periodical¬ 
ly  stops  transmitting  data  and 
momentarily  scans  for  RF  sig¬ 
nals,  reporting  data  back  to  a 
switch-based  or  PC  analysis 
application.  AirDefense  is  anoth¬ 
er  specialized  RF  monitoring 
company 

WLAN  enforcement 

First  Horizon  Home  Loan 
(FHHL),a  mortgage  company  in 
Irving,  Texas,  bought  Network 
Chemistry’s  initial  product  to 
enforce  a  “no  WLAN  allowed” 
policy  at  some  locations,  while 
the  company  worked  out  a 
WLAN  strategy  Later  this  year, 
FHHL  plans  to  deploy  WLANs  at 
headquarters  and  some  900 
branch  offices,  and  RFprotect 
will  be  rolled  out  with  it:  Each 
access  point  will  have  nearby  a 
RFprotect  sensor. 

“We  want  to  make  sure  that 
what’s  occurring  on  our  wireless 
nets  is  what  we  want  to  occur’’ 
says  Michael  Wallis,  FHHL  man¬ 
ager  of  data  security.  “We  want  to 
detect  what’s  going  on, and  this  is 
one  more  tool  for  doing  that.” 

Wallis  says  that  overall  the  cost 
of  installing  a  separate  sensor 
network  is  comparable  to  the 
premium  he  would  pay  Cisco  or 
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Extreme  Networks  to  add  WLAN 
and  RF  management  capabili¬ 
ties  into  a  wired  switch  infra¬ 
structure.  “It’s  about  a  break¬ 
even,”  he  says.  “We’re  already 
pulling  cable  for  the  wireless 
access  points,  so  we  can  just  run 
an  additional  string  and  put  a 
sensor  wherever  we  put  an 
access  point.” 

Users  often  talk  about  what 
these  products  let  them  actually 
see  in  terms  of  the  wireless  traffic. 

“You  can  see  the  connected 
[WLAN]  client,  the  [media 
access  control]  and  IP  addresses 
assigned,  the  user  log-in,”  says 
John  Greiner,  CTO  for  Legal 
Services  for  New  York,  a  group 
that  offers  legal  assistance  in 
civil  cases  to  residents  of  the  five 
New  York  City  boroughs. 

“You  can  see  all  the  access 
points  and  how  they’re  operat¬ 
ing,  and  the  power  levels  for  the 
radios,"  Grenier  adds. 

Legal  Services  installed  the 
Aruba  WLAN  switch  and  access 
points  initially  as  a  way  to  moni¬ 
tor  internal  and  external  wireless 
traffic,  and  to  create  an  open 
wireless  link  to  the  Internet  for 
staff  and  volunteers. 

Greiner  says  he  will  expand 
wireless  use  over  time,  and 
increase  the  use  of  Aruba’s  mon¬ 
itoring  features. 

The  new  RF  tools  offer  network 
executives  the  ability  for  contin¬ 
uous  monitoring  of  WLAN. 

“You  can’t  predict  when  a 
rogue  [user]  will  try  to  access 
the  net,”  says  Stan  Schatt,  a  vice 
president  with  Forrester  Re¬ 
search  .You  can’t  afford  to  wait  to 
learn  that  a  user  doesn’t  have  an 
encrypted  VPN  session.  “You 
need  to  be  alerted  no  matter 
when  these  things  happen,” 
Schatt  says. 

“RF  monitoring  and  manage¬ 
ment  is  still  an  art,  not  a  science,” 
he  says.  As  a  result,  vendors  are 
scrambling  to  add  wizards  and 
even  artificial  intelligence  to 
emerging  RF  products.  ■ 


More  online! 


In  this  Webcast,  Craig  Mathias,  principal  at 
Farpoint  Group,  leads  you  through  the 
pros  and  cons  of  wireless  networking. 
Mathias  keynoted  Network  World's 
Wireless  LANs  Technology  Tour  and  shares 
highlights  from  his  presentation. 
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MARCH  TOWARD 


Work  remains,  but  the  path  to  a  single  network 
is  getting  clearer.  ■  By  Steve  Ulfelder 


IP  INTEGRATION 


I  ^ 

xempla  Healthcares  three-hospital  net- 

jgjj  i  work  uses  an  OC-3  ring  to  link  about  15 
_■ _ ^  buildings  in  the  Denver  area.“We  run  225  dif¬ 

ferent  applications,” says  Exempla  CTO  Lots  Pook.“And  45  or 
so  have  to  run  on  a  stand-alone  network  because  they  can’t 
ride  our  IP  network.” 

Even  networks  within  buildings  have  to  be  doubled  up  to'? 
meet  legacy  demands.  For  example,  fetal  monitors  have  to  be 
wired  separately  using  Category  5  cable  because  they  rumaj 
16-volt  pulse  signal.  In  the  legacy-heavy,  highly  regulate# 
healthcare  industry,  such  applications  are  not  uncommon. 

In  its  newest  facility,  Book’s  team  is  getting  a  taste  of  the  go^l 
life,  with  merged  voice  and  data  and  a  higher  percentage  of  . 
applications  running  on  IP  “1  can  run  that  at  a  much  lower  cost" 

Book  says.  However,  Exempla  won't  be  all-IP  any  time  soon,  as 
long  as  healthcare  companies  require  specialized  networks  to 
meet  patient  and  regulatory  needs. 

While  the  industry  at  large  marches  toward  an  integrated  IP 
future,  most  organizations  still  have  to  deal  with  a  collection  of 
legacy  networks. 

How  many?  Even  when  you  don’t  have  to  support  special  equipment,  there  can 
be  as  many  as  a  half-dozen, according  to  Nick  Lippis, CEO  of  consultancy  Lippis 
Enterprises.  In  addition  to  voice  and  IP  there’s  still  some  semblance  of  SNA 
networks  in  most  companies,  say  nothing  of  video  networks,  dial-up  net¬ 
works,  one  devoted  to  alarms  and  physical  security,  and  a  wireless  net¬ 
work  (albeit  one  that’s  typically  leased). 

While  the  assumption  is  that,  over  time,  all  traffic  is  collapsed 
onto  1R  questions  remain  about  everything  from  the  motiva¬ 
tions  and  risks  to  the  impediments  to  integration. The  migra¬ 
tion  is  slow,  steady  and  methodical. 

Gartner  analyst  Bob  Hafner  says  there’s  a  slew  of  activi¬ 
ty  around  IP  migration,  but  nothing  resembling  a  tidal 
wave.“Has  anybody  moved  all  their  networks  to  a  single 
network?  Not  yet.  We’re  in  the  early  stages.  Key  opportu- 


30% 


nities  are  being  ad¬ 
dressed,  but  you  don’t 
see  an  overall  strategic 
plan.” 

The  key  opportunity  of 
choice,  not  surprisingly, 
is  IP  telephony  In  infor¬ 
mal  surveys,  Gartner 
finds  80%  of  companies 
have  some  sort  of  IP 
telephony  program  in 
place, “but  it  may  be  any¬ 
thing  from  a  trial  with 
five  phones  to  an  entire 
2,000-person  location,” 
Hafner  says. 


Contributing  factors 

Among  corporations 
migrating  to  ip  cost  is 
the  primary  driver.  In 
2003  when  the  Cancer 
Therapy  and  Research  Center  installed 
storage-area  networks  in  its  buildings  in 
San  Antonio, Texas,  CTO  Mike  Luter  opted 
to  link  them  using  iSCSI  rather  than  the 
more  traditional  Fibre  Channel,  meaning 
the  storage  traffic  could  ride  the  IP  net¬ 
work. 

Cost  was  the  biggest  factor,  Luter  says. 
The  centers  buildings  are  22  miles  apart, 
and  “to  do  Fibre  Channel,  we  would  have 
had  to  put  another  fiber  in.With  iSCSI  we 
were  able  to  use  existing  fiber” 

The  center  installed  Cisco  SN  5428  stor¬ 
age  routers  in  both  locations  to  consoli¬ 
date  storage  resources  on  shared  EMC 
Clariion  arrays,  and  the  5428s  are  linked 
via  iSCSI  over  the  IP  network 

Because  the  Cancer  Therapy  and 
Research  Center  is  a  not-for-profit  organi¬ 
zation,  its  purchase  of  the  Cisco  gear  was 
closely  scrutinized.  The  reduced  cost  of 
ongoing  maintenance  for  a  single-proto¬ 
col  network  was  a  major  factor  in  the 
approval,  Luter  says. This  echoes  the  sen¬ 
timents  of  nearly  every  IT  group  consid¬ 
ering  IP  integration:  The  major  appeal  is 
to  create  one  infrastructure,  reducing  the 
need  for  different  skill  sets. 

Some  of  the  cost  benefits  of  IP  integra¬ 
tion  —  such  as  a  significant  drop  in  the 
price  of  telephone  moves,  adds  and 
changes  when  companies  adopt  VoIP  — 
are  well  documented.  Others  might  take 
longer  to  pan  out,  but  could  be  more 


One  big  chunk 

While  companies  still  are  migrating  various  data  networks 
to  the  company  IP  backbone,  voice  represents  a  gigantic 
integration  challenge  and  opportunity.  A  recent  Network 
World  survey  shows  less  than  a  third  of  companies  have 
installed  some  VoIP. 


Already  Will  implement  in  Will  implement  in 
implemented  next  12  months  next  1-2  years 


No  plans  to 
implement 


:  sure 
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important  in  the  long  run.  For  example, 
Exempla’s  Pook  says  the  company’s  all-IP 
building  frees  up  a  full-time  network 
technician’s  salary 

The  primary  reason  for  IP  integration 
is  savings,  Hafner  says. “We  haven’t  seen 
any  scenarios  in  which  enterprises 
gained  competitive  advantage.  However, 
we  have  seen  cases  in  which  it  became 
much  easier  [for  companies]  to  do 
things  they  wanted  to  do  because  of 
integration,”  he  says. 

In  fact, sometimes  the  migration  to  IP  is 
the  only  feasible  way  to  run  needed 
applications.That’s  the  case  at  the  School 
District  of  Lancaster,  Pa.,  where  network 
manager  Tim  Fake  is  leading  a  shift  from 
an  infrastructure  that  can  be  generously 
described  as  piecemeal  to  pure  IP 


With  more  than  1 1 ,000 
students,  the  district  has 
21  buildings  linked  via  a 
100M  bit/sec  ATM  net¬ 
work  and  a  separate 
voice  network.  Fake’s 
group  is  nearly  finished 
with  the  first  phase  of  a 
shift  to  an  all-IP  infra¬ 
structure  that  will  be 
built  around  a  Cisco 
Catalyst  6500  in  the  data 
center;  a  Cisco  Catalyst 
4500  Series  for  each 
campus;  and  Catalyst 
2950/3550s  in  wiring 
closets. 

While  Fake  welcomes 
the  simplified  infrastruc¬ 
ture,  the  big  driver  for  the 

_  school  district  is  the  abil- 

ity  to  offer  “apps  we  just 
cannot  do  right  now  that  are  really  cru¬ 
cial  for  education,”  he  says,  including 
video  on  demand  and  distance  learning. 
Ultimately,  Fake  says,  he  will  be  able  to 
offer  VolRvideo  on  demand,  100M  bit/sec 
Internet  access  to  every  desktop  and  uni¬ 
fied  security 

In  addition  to  cost  and  new  applica¬ 
tions,  analysts  say  senior  business  man¬ 
agement  is  aiding  the  migration  to  IP  by 
calling  for  things  that  are  enabled  by  it. 
“CEOs  and  CFOs  may  not  understand  the 
network,  but  they  understand  the  impor¬ 
tance  of  the  network,”  Lippis  says. 

They  see  that  profit  drivers  such  as 
improved  collaboration,  easier  access  to 
enterprise  applications  and  better  cus¬ 
tomer  support  can  be  “goosed”  by  net¬ 
work  technology  Lippis  says.  “This  drives 


Web  cast: 

IP  communications  Webcast 
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IP  communications  offer  tremendous  potential 
for  easing  the  logistical  barriers  of  time  zones 
and  geographic  dispersion  between  companies 
and  their  branch  offices,  telecommuters,  cus¬ 
tomers,  partners  and  vendors. 

Learn  how  companies  are  transforming  legacy 
technologies  into  cohesive  IT  systems  that  sup¬ 
port  more  productive,  flexible  and  profitable 
organizations. 

Watch  it  now: 

www.itworld.com/cisco_ip 


“HAS  ANYBODY  MOVED 
ALL  THEIR  NETWORKS  TO 
A  SINGLE  NETWORK?  NOT 
YET  WE’RE  IN  THE  EARLY 

STAGES.’  Bob  Hafner,  Gartner  analyst 


the  push  toward  IP  because  it  affects  how 
a  company  interacts  with  its  entire  ecosys¬ 
tem”  of  suppliers,  partners,  employees  and 
customers,  he  says.“It  s  easy  to  see  how  a 
single  infrastructure  makes  this  doable.” 

Risks 

Regardless  of  the  potential  of  IP  inte¬ 
gration,  IT  organizations  want  assurance 
about  security  and  reliability  Is  one  IP 
infrastructure  even  a  desirable  thing 
given  single  point  of  failure  concerns? 

Gartners  Hafner  says  not  to  worry. 
Proper  analysis  of  network  traffic,  fol¬ 
lowed  by  appropriate  network  design, 
can  address  such  issues. 

Kim  Fterdikou,  CTO  at  Juniper,  agrees. 
“The  more  traffic  there  is  [running  over 
IP  networks],  the  more  analysis  is  done 
on  the  business  risk,”  Perdikou  says. 

Companies  have  found  a  variety  of 
ways  to  ensure  uptime  in  their  integrated 
IP  networks. The  Cisco  storage  routers  at 
the  Cancer  Therapy  and  Research  Center 
include  a  feature  that  lets  the  center  boot 
servers  directly  across  the  IP  network. 

According  to  Luter,  that  not  only 
improves  the  organization’s  patient  serv¬ 


ice,  but  lets  it  stick  to  a  demanding  sched¬ 
ule  that  has  complex  medical  proce¬ 
dures  occurring  every  10  minutes.  “We 
need  to  get  back  up  as  quickly  as  possi¬ 
ble,”  he  says.“With  Network  Boot,  we  can 
be  up  and  running  after  a  server  failure 
in  10  to  20  minutes.” 

That’s  a  vast  improvement  over  the  two 
to  eight  hours  it  would  take  to  manually 
install  an  operating  system  and  down¬ 
load  up-to-date  data  onto  a  new  server 
with  tape  backup. 

Because  everyone’s  network  and  busi¬ 
ness  drivers  are  different,  there  is  no  cen¬ 
tral  migration  plan  that  companies  can 
gauge  their  IP  integration  efforts  against. 
But  analysts,  users  and  vendors  agree  that 


companies  with  no  IP  integration  plan 
whatsoever  are  lagging  behind. 

For  companies  looking  for  new  ways 
to  streamline  costs,  management  and 
gird  for  the  future,  an  aggressive  move 
toward  IP  integration  might  be  an 
option  to  consider. 

Pure  integration  probably  won’t  hap¬ 
pen  anytime  soon, but  the  tectonic  plates 
have  shifted  and  the  benefits  of  integra¬ 
tion  outweigh  the  drawbacks,  so  the 
march  toward  integration  is  better  under¬ 
taken  sooner  rather  than  later. 

Ulfelder  is  a  technology  and  automotive 
writer  in  Southborough,  Mass.  He  can  be 
reached  at  sulfelder@charter.net. 
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Enterprise-wide  IP  integration  might  be  a 
distant  goal,  but  the  advent  of  the  multi¬ 
protocol  router  made  it  possible  for 
companies  to  realize  a  degree  of  inte¬ 
gration  by  collapsing  different  types 
of  traffic  onto  a  single  backbone. 

While  there  are  benefits  to 
this  level  of  integration,  there 
are  drawbacks. 


THE  BENEFITS: 


■  Routing  non-IP  protocols  in  IP  routers  means  these 
protocols  are  administered  by  the  same  IT  staff  that  admin¬ 
isters  IP  protocols,  thus  reducing  duplication  of  effort  and 
resources. 

■  IP  isn’t  always  the  most  efficient  way  for  a  LAN  to 
operate.  For  example,  Novell  NetWare  (IPX)  and  Banyan 
Vines  provide  more  efficient  file  and  print  services  for  PCs 
than  does  IP's  Network  File  System. 

■  Routing  non-IP  protocols  increases  your  network’s 
flexibility. 

■  When  push  comes  to  shove,  most  network  protocols 
share  many  similarities.  If  a  router  can  handle  one  effici¬ 
ently,  it  generally  can  handle  others. 


THE  DRAWBACKS: 


■  Multi-protocol  network  design  is  more  demanding. 

Each  protocol  has  its  own  rules  for  routing  and  address 
assignment,  and  these  rules  often  conflict  with  each  other. 

■  A  multi-protocol  router  is  significantly  more  complex 
than  a  single-protocol  router,  so  weaknesses  in  the  imple¬ 
mentation  of  one  protocol  might  affect  the  stability  of 
others. 

■  Some  protocol  families  don't  scale  as  well  as  others 
and  might  not  work  well  in  a  WAN. 

■  IT  groups  need  an  expert  in  each  protocol  they  route  to 
understand  its  capabilities  and  troubleshoot  problems. 

■  Each  routed  protocol  demands  its  own  routing  table 
(and  also  possibly  a  dynamic  routing  protocol),  which  puts 
extra  load  on  router  equipment. 
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COMPANIES  THAT  PUT  VOICE  ON  THE 
NETWORK  CHOOSE  THE  COMPANY 
THAT  BUILT  THE  NETWORK. 

When  voice  joins  data  on  a  secure  network,  some  remarkable  things  can  happen.  Instead  of  managing  different  flavors  of 
PBX  from  location  to  location,  you  can  handle  everything  from  one  place,  saving  time  and  money — not  to  mention  mileage  on 
IT  staff  shoes.  And  with  over  20  years  of  proven  networking  experience,  Cisco  has  become  the  standard  for  millions  of  voice 
IP  users  around  the  world.  It's  why  over  half  of  the  Global  500  have  chosen  Cisco  to  rethink  the  way  they  handle  voice.  And 
their  business.  Are  you  in  yet?  To  learn  how  Cisco  can  help  you  plan,  design  and  implement  an  end-to-end  IP  solution,  visit 
cisco.com/go/ipcnow.  NOW,  OVER  THREE  MILLION  PEOPLE  ARE  USING  CISCO  IP  PHONES. 
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Takes 


■  PowerDsine  last  week  released  a 
six-port  Power  over  Ethernet  device 
for  small  and  midsize  organizations. 
The  six  port  3006  PoE  Midspan  box 

sits  in  front  of  a  standard  LAN  switch, 
and  provides  power  and  data  connec¬ 
tivity  to  powered  end  devices,  such  as 
wireless  access  points,  IP  telephones 
and  IP  cameras.  The  device  uses 
standard  802.3af  PoE  technology  and 
can  work  with  any  standard  LAN 
switch.  The  box  costs  $400. 

■  Agere  Systems  last  week  unveiled 
proposals  for  a  250M  bit/sec  wireless 
LAN  specification,  which  it  plans  to 
submit  next  month  to  the  IEEE  802.1 1  n 
task  group.  The  proposal  is  a  joint 
effort  by  Agere,  Intel,  Sony,  Atheros, 
Nokia  and  several  unannounced  com¬ 
panies  that  are  part  of  an  ad  hoc  in¬ 
dustry  group  called  TGn  Sync.  The 
group's  purpose  is  to  outline  a  viable 
technology  that  could  be  adopted  by 
the  802.1  In  group  as  the  core  of  a 
future  IEEE  standard.  Aug.  12  is  the 
deadline  for  submissions  to  the  IEEE 
task  group.  The  standards  group  will 
hear  presentations  in  September  from 
companies  and  groups  that  have 
made  submissions  and  begin  a 
process  of  combining  and  winnowing 
the  proposals.  Ratification  probably 
will  be  sometime  in  2006. 

■  Boeing  is  expanding  its  corporate 
IP  telephony  rollout  and  will  standard¬ 
ize  on  Cisco  IP  telephony  equipment, 
the  two  companies  announced  last 
week.  The  deal  announced  with  Cisco 
will  extend  IP  telephony  to  all  of 
Boeing’s  150,000  employees  in  48 
states  and  70  countries.  In  a  previous 
interview  with  Network  World  { www. 
nwfusion.com,  DocFinder:  2939), 
Boeing  discussed  its  plan  to  standard¬ 
ize  on  Cisco  IP  telephones  and 
CallManager  IP  PBX  technology,  with 
several  pilots  running  across  its  U.S. 
corporation  —  about  9,000  IP  phones 
total.  The  Cisco  deal  will  push  IP  tele¬ 
phony  to  most  desktops  throughout 
the  company.  Boeing  already  uses 
Cisco  switches  and  routers  exten¬ 
sively  in  its  enterprise  LANs  and  cor¬ 
porate-wide  WAN. 
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Cisco  buys 

■  BY  PHIL  HOCHMUTH 

Analysts  and  customers  give  Cisco  most¬ 
ly  passing  grades  on  its  acquisitions  report 
card,  as  the  network  giant  already  has 
bought  five  companies  this  year.  But  none 
of  the  acquisitions  will  drive  the  company 
into  the  groundbreaking  new  directions 
Cisco  has  hinted  at,  observers  add. 

Cisco  has  added  advanced  routing  hard¬ 
ware  and  software,  and  remote-office  back¬ 
up  technologies  in  a  little  over  a  month 
with  the  acquisitions  of  Procket  Networks, 
Parc  Technologies  and  Actona  Technolog¬ 
ies.  Observers  say  the  recent  purchases  add 
some  interesting  technologies  to  Cisco’s 
menu.  Meanwhile, others  say  Cisco  still  has 
work  to  do  with  integrating  technologies 
acquired  more  than  three  years  ago. 

Cisco  made  two  security-based  acquisi¬ 
tions  in  March  —  Secure  Sockets  Layer 
VPN  vendor  Twingo  and  intrusion-detec- 


■  LAN/WAN  SWITCHES  AND  ROUTERS 

■  ACCESS  DEVICES  ■  SERVERS  ■  VPNS 

■  OPERATING  SYSTEMS  ■  NETWORKED  STORAGE 

■  VOIP  ■  WIRELESS  NETWORKS 

earn  mixed  reviews 

Spending  spree 

Cisco  has  purchased  several  start-up  companies  in  the  last  few 
months,  adding  some  new  technologies,  but  mostly  augmenting  its 
core  routing  and  security  offerings. 


Vendor 

Acquisition 

announced 

Price 

What  it  does 

Parc  Technologies 

July 

$9  million 

Carrier  traffic  optimization 
software 

ActonaTechnologies 

July 

$82  million 

Remote  office  storage 
synchronization 

Procket  Networks 

June 

$89  million 

Core  Internet  router  vendor 

Riverhead  Networks 

March 

$39  million 

IDS  hardware/software  vendor 

Twingo  Systems 

March 

$5  million 

SSLVPN  technology 

tion  system  (IDS)  vendor  Riverhead  Net-  was  different  from  previous  buys  this  year 
works  —  then  stayed  quiet  until  June,  because  Cisco  acquired  only  the  intellec- 
with  its  $89  million  buyout  of  carrier  tual  property  and  a  majority  of  the 
router  start-up  Procket.  The  acquisition  See  Cisco,  page  18 


Apple  pumps  up  server  OS 


■  BY  JENNIFER  MEARS 

Virginia  Polytechnic  and  State  University 
was  looking  to  build  a  supercomputer  and 
do  it  without  breaking  the  bank.  It  already 
had  a  small  Advanced  Micro  Devices- 
based  cluster  running  Linux,  but  eventually 
opted  to  deploy  1,100  of  Apple’s  64-bit 
Power  Mac  G5s  early  last  year. In  November, 
the  university’s  Apple-based  TeraScale  clus¬ 
ter  was  ranked  the  third-fastest  supercom¬ 
puter  in  the  world. 

The  cluster  has  been  offline  for  the  past 
few  months  as  the  university  replaces  the 
Pbwer  Mac  G5s  with  Xserve  G5s,  also 
based  on  the  64-bit  PowerPC  chip 
designed  by  IBM  and  Apple.  Assembly  has 
been  completed,  and  final  testing  is 
underway. The  system  is  expected  to  be  in 
production  soon,  say  engineers  at  Virginia 
Tech,  in  Blacksburg. 

The  university  expects  a  performance 
increase  with  the  new  hardware  and  also  is 
expecting  a  boost  from  Apple’s  Unix-based 
server  operating  system,  Mac  OS  X  Server 
version  10.4,  code-named  Tiger. 

Expected  to  be  released  in  the  first  half 
of  next  year.  Tiger  brings  more  than  200 
new  features,  including  native  support  for 
64-bit  applications,  Ethernet  link  aggrega¬ 
tion  that  binds  Ethernet  connections  to 
enable  failover  and  faster  network  perfor- 


Eye  on  the  Tiger 

Apple  continues  to  push  Mac  OS 
as  enterprise  ready.  A  look  at 
some  of  the  key  features  that 
will  come  with  the  “Tiger” 
operating  system  when  it  is 
released  next  year: 

•  Native  support  for  64-bit  applications. 

•  Access  Control  Lists  so  that 
administrators  can  set  more  precise 
permissions  for  files  and  network 
services. 

•  iChat  Server,  to  set  up  an  internal, 
open  source-based  chat  environment. 

•  Mobile  Home  Directories  that  store 
user  files  and  preferences  in  a 
network  server  accessible  from 
anywhere. 

•  Windows  migration  tools  to  make  it 
easierto  switch  to  a  Mac  OS 
environment. 

•  Integrated  Xgrid  software,  making  it 
easierto  deploy  computing  clusters. 


mance,  and  access  control  lists  that  will 
let  users  go  beyond  traditional  Unix 
permissions. 

Tiger  comes  after  the  October  release  of 
Mac  OS  X  10.3,  code-named  Panther, 


which  has  dozens  of  new  capabilities  and 
is  aimed  at  simplifying  integration 
between  Macintoshes,  Windows  and 
Linux  environments. 

Apple  has  the  same  aspirations  with 
Tiger,  adding  tools  to  simplify  the  migra¬ 
tion  of  user  and  group  account  informa¬ 
tion  from  Windows  Primary  Domain 
Controller  into  Open  Directory,  for  exam¬ 
ple.  But  it  also  includes  a  number  of 
updates  aimed  at  boosting  performance 
and  shoring  up  the  operating  system  to 
support  heavy-duty  enterprise  applica¬ 
tions,  such  as  databases  and  high-perfor¬ 
mance  computing,  says  Tom  Goguen, 
director  of  server  software  for  Apple. 

“Panther  had  partial  64-bit  support,  and 
Tiger  will  have  full  64-bit  support,  which  is 
going  to  affect  high-performance  comput¬ 
ing  quite  a  bit,”  says  Josh  Durham,  a  com¬ 
puter  systems  engineer  at  Virginia  Tech.“Na- 
tive  support  lets  people  write  code  that  ad¬ 
dresses  the  full  amount  of  memory  Before 
we  had  around  a  2G-byte  per-process  limit; 
now  it’s  something  enormous.” 

Durham  says  64-bit  support  coupled 
with  updates  in  the  Darwin  kernel,  which 
is  the  core  of  the  BSD  Unix-based  operat¬ 
ing  system,  will  help  boost  performance. 
“All  that  should  help  speed  up  things  quite 
a  bit,"  he  says. 

See  Apple,  page  18 
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Benchmarking  new  technology  is  a 
key  element  in  understanding  where 
it  might  fit  in  your  infrastructure. 
While  rarely  easy,  standardization  of  prod¬ 
uct  features  and  development  of  sophisti¬ 
cated  test  tools  by  the  likes  of  Spirent 
Communications  and  Ixia  made  testing  of 
LAN  switches  quite  straightforward.  With 
the  advent  of  wireless  LAN  switches,  all  that 
has  changed.  The  nature  of  the  beast 
(WLAN,  that  is)  is  forcing  us  to  cobble 
together  test  beds  that  would  make  Rube 
Goldberg  proud,  and  the  testing  complex¬ 
ity  is  increased  dramatically 
At  the  core  of  the  challenge,  naturally,  is 
wireless.  Where  a  legacy  LAN  switch  was 
concerned  only  with  data  flow  between 
two  “like”  ports  (that  is,  Fast  Ethernet  to  Fast 


Benchmarking  WLAN  switches:  Let  me  count  the  ways 


Ethernet  or  Gigabit  Ethernet  to  Gigabit 
Ethernet),  the  “partner”  port  in  a  WLAN 
switch  configuration  is  the  wireless  access 
point  plugged  in  to  the  switch  port.  In  all 
cases,  that  access  point  implements  a 
shared-use  protocol  on  the  wireless  side. 

So  where  traditional  testing  would  feed 
identical  traffic  bidirectionally  through 
matched  ports,  that  option  disappears 
when  the  wireless  edge  is  involved.  But  it 
gets  worse. 

Most  WLAN  vendors  implement  propri¬ 
etary  tunneling  that  logically  couples  the 
access  point  into  their  WLAN  switch. Thus, 
for  example,  a  64-byte  frame  that  enters  a 
wired  Fast  Ethernet  port  destined  for  a 
wireless  user  will  exit  the  Fast  Ethernet  port 
on  its  way  to  the  access  point  as  perhaps  a 
104-byte  Ethernet  frame  (depending  on 
the  vendors  encapsulation  scheme).  Once 
received  by  the  access  point,  the  tunneling 
packet  is  stripped  away  and  the  frame  is 
sent  out  on  the  wireless  adapter  as  an 
802.1  lb/a/g  standard  frame.  If  it  sounds 
complex, you’re  getting  the  picture. 


Unlike  their  wired  brethren,  WLAN 
switches  can  implement  enormously  com¬ 
plex  internal  logic.  In  order  to  handle 
roaming,  the  switches  have  to  keep  track  of 
client  state,  access  point  loading  and  more 
—  for  perhaps  hundreds  or  even  thou¬ 
sands  of  clients. 

Add  to  this  the  difficulty  of  trying  to  scale 
wireless  testing  —  interference,  number  of 
nodes  and  the  like  —  and  you  arrive  at  an 
interesting  destination.  That  is,  “wireless” 
testing  that  doesn’t  use  any  wireless. 

So  in  order  to  prove  scalability  of  WLAN 
switches,  we  have  found  ourselves  “force 
feeding”  an  asymmetrical  stream  of  traffic 
through  the  Gigabit  Ethernet  ports  of  a 
WLAN  switch,  “simulating”  the  internal 
load  that  would  be  placed  on  the  switch 
had  it  been  servicing  a  huge  amount  of 
actual  WLAN  clients  —  or  so  it  is  sup¬ 
posed. 

Because  each  vendor  uses  its  own  pro¬ 
prietary  encapsulation  protocol  and 
access-point-to-WLAN-switch  “handshake” 
protocol,  it  is  no  surprise  that  “canned 


scripts”  aren’t  available.  Instead  we  are 
back  to  the  days  of  capturing  one  live  ses¬ 
sion,  loading  it  into  the  test  tool  and  then 
using  that  information  to  synthesize  the 
large  traffic  load.  Not  ideal,  but  it  is  the 
best  we  can  do  today 

And,  what  I’ve  just  described  is  the  sim¬ 
ple  part  of  the  test.  When  we  get  to  roam¬ 
ing,  VoIP  and  QoS,  we  face  even  greater 
challenges. 

With  that  in  mind,  let  me  use  this  col¬ 
umn  to  gauge  vendor  interest  in  an  idea.  I 
propose  that,  this  fall, The  Tolly  Group  and 
Network  World  host  a  meeting  at  our  lab  of 
WLAN  switch  and  test  tool  vendors  to 
attempt  to  articulate  the  challenges  we 
face.  And,  more  importantly,  try  to  estab¬ 
lish  at  least  some  consensus  to  help  guide 
the  efforts  of  test  tool  vendors  to  the  ben¬ 
efit  of  all.  Interested? 

Tolly  is  president  of  The  Tolly  Group,  a 
strategic  consulting  and  independent  test¬ 
ing  company  in  Boca  Raton,  Fla.  He  can  be 
reached  at  ktolly@tolly.com. 


Cisco 
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engineering  team  from  Procket,  not  the 
company’s  customer  contracts  or  debts. 
Procket  competed  with  Cisco  in  the  core 
routing  market  and  had  gained  2%  of  the 
10G  bit/sec  router  market  in  2004,  accord¬ 
ing  to  Dell’Oro. 

Observers  also  said  Cisco’s  timing  was 
odd  because  it  had  just  introduced  its 
CSR-1  router,  which  scaled  past  any  of 
Procket’s  products.  Cisco  said  it  plucked 
the  Procket  assets  and  brainpower  to 
enhance  its  own  product  development 
and  manufacturing  processes. 

Earlier  this  month,  Cisco  acquired  Parc,  a 
maker  of  routing  software  algorithms  that 
optimize  routing  paths  in  carrier  Multi-pro¬ 
tocol  Label  Switching  (MPLS)-based  net¬ 
works.  Cisco  paid  $9  million  for  the  U.K. 
firm  and  said  it  will  integrate  the  technol¬ 
ogy  with  its  MPLS  Traffic  Engineering 
product  line  for  carriers. 

The  buy  that  might  prove  most  signifi¬ 
cant  for  enterprise  customers,  and  risky 
for  Cisco,  is  the  $82  million  purchase  of 
Actona  in  June, says  Lawrence  Orans, prin¬ 
cipal  analyst  at  Gartner.  Actona  makes 
appliances  that  let  companies  consolidate 
servers  from  branch  offices  into  a  central 
data  center.  The  boxes  replicate  storage 
and  application  protocols  on  the  branch- 
office  end,  allowing  for  faster  access  to 
files  and  better  application  performance, 
Cisco  says.  Cisco  will  resell  appliances 
based  on  Actona  software  and  integrate 
the  technology  into  blades  for  its  families 
of  access  routers. 

“Server  consolidation  is  an  area  where 
Cisco  thinks  a  lot  of  money  will  be  spent,” 
Orans  says.  He  says  Cisco’s  strategy  will  be 
to  help  corporations  bring  IT  assets  in- 
house  and  then  sell  the  infrastructure  to 
support  large  data  centers  with  network 


and  storage  switches.  The  risk,  he  adds,  is 
that  the  remote  storage  network  market  is 
not  well  established.  “The  companies  in 
that  market” — Actona  included  — “are  all 
start-ups  and  have  few  reference 
accounts,”  Orans  says. 

The  fact  that  Cisco  is  keeping  up  its 
acquisition  pace  is  a  good  sign,  one  user 
says.  But  that  user  says  he  wishes  the  ven¬ 
dor  would  work  harder  to  integrate  the 
technologies  it  bought  long  ago. 

“My  issues  with  Cisco  are  integration, 
integration  and  integration,”  says  Scott 
Pinkerton,  network  solutions  manager  for 
Argonne  National  Laboratories,  a  U.S. 
Department  of  Energy  research  center  at 
the  University  of  lllinois.“I  have  to  devote  a 
lot  of  staff  and  time  doing  the  kind  of 
back-end  integration  that  Cisco  should 


Apple 

continued  from  page  17 

Analysts  say  that  this  latest  release  of 
Apple’s  server  operating  environment 
provides  some  useful  technical  updates. 
They  note  that  the  Unix-based  operating 
system  is  technically  strong,  comes  with 
integrated  open  source  applications  that 
meet  most  business  demands  —  such  as 
the  JBoss  application  server  —  and  con¬ 
tinues  to  ease  deployment  headaches 
with  administrative  tools.  Xgrid,  Apple’s 
clustering  software,  for  example,  will 
be  integrated  into  the  Tiger  operating 
system. 

“There  are  a  lot  of  improvements,  a  lot  of 
good  things.  And  overall  1  look  at  [Tiger] 
and  say  technically  it  looks  very  good,” 
says  Dan  Kusnetzky,  program  vice  presi¬ 
dent  of  system  software  at  IDC. 

At  the  same  time,  Kusnetzky  notes  that 
Apple  is  barely  a  blip  in  the  operating  sys¬ 
tem  market,  falling  into  the  “other”  categ- 


already  have,”  he  adds.  Specifically, 
Pinkerton  wants  more  automated  configu¬ 
ration  and  device  awareness  among  his 
Cisco  IDS,  VPN  and  firewall  boxes  —  all 
products  resulting  from  Cisco  acquisitions 
over  the  past  decade. 

Analysts  anticipating  Cisco’s  move  into 
new  markets  —  which  the  vendor  has 
vaguely  hinted  at  recently  —  were  not 
overly  intrigued  by  the  vendor’s  recent 
purchases. 

“None  of  these  acquisitions  brings  Cisco 
into  an  entirely  new  business  area,”  says 
Cisco  watcher  Peter  Sagawa,  a  stock  ana¬ 
lyst  with  Sanford  Bernstein.  “They’re  all 
pretty  small.” 

Sagawa  adds  that  most  of  Cisco’s  acqui¬ 
sitions  this  year  were  focused  on  adding 
engineering  talent  or  incremental  im- 


ory  in  a  Unix  segment  that  accounted  for 
just  10.6%  of  overall  server  operating  envi¬ 
ronments  in  2003.  Meanwhile,  Windows 
held  a  58%  share,  while  paid  shipments  of 
Linux  accounted  for  23%  of  the  world¬ 
wide  market.  Apple  also  is  trying  to  com¬ 
pete  in  a  64-bit  server  market  dominated 
by  Sun,  which  has  about  35%  of  the  arena. 
IBM  and  HP  are  behind  Sun,  with  about 
12%  market  share,  according  to  IDC. 

“The  key  challenge  isn’t  technical  at  this 
point,  it’s  Apple  creating  a  brand  that  busi¬ 
nesspeople  and  IT  decision  makers  are 
aware  of,  will  consider  and  after  consider¬ 
ing  will  choose.  It’s  more  than  rolling  out  a 
technically  great  product,”  Kusnetzky  says. 

Michael  Gartenberg,  vice  president  and 
research  director  at  Jupiter  Research, 
agrees.  He  says  that  Apple  provides  an 
attractive  alternative  for  corporations  both 
on  the  desktop  and  on  the  server.  Tiger 
includes  more  than  150  new  features, 
highlighted  by  Spotlight,  a  search  technol¬ 
ogy  that  lets  users  find  anything  on  their 


provements  to  existing  products  —  such 
as  a  Riverhead-based  IDS  blade  for  the 
Catalyst  6500  or  Actona-based  blades  for 
Cisco  branch  routers. 

At  a  June  Bear  Sterns  conference  in  New 
York,  Cisco  CEO  John  Chambers  said 
Cisco  is  looking  into  two  —  and  could 
consider  as  many  as  six  —  new  technol¬ 
ogy  areas,  but  he  declined  to  name  them. 
Cisco  today  targets  six  advanced  tech¬ 
nologies  —  VolRsecurity,  storage,  wireless, 
optical  and  home  networking.  Cisco  has 
said  it  will  wait  until  later  this  year  to 
reveal  what  these  new  areas  are. 

“We  have  not  seen  hide  nor  hare  of  that 
yet,”  Sagawa  says,  regarding  Cisco  technol¬ 
ogy  expansion  plans,  “and  none  of 
[Cisco’s]  recent  acquisitions  address 
that.”  ■ 


hard  drives  —  from  files  to  e-mail  to  con¬ 
tact  information  to  images  —  with  a  single 
tool. 

Pushing  Apple  to  the  top  of  a  corpora¬ 
tion’s  short  list  when  it  comes  to  server  and 
client  operating  system  remains  the  biggest 
challenge,  he  says. 

“Tiger  is  clearly  enterprise-ready’ he  says. 
“The  challenge  is  getting  folks  in  the  IT 
department  to  overcome  their  Macintosh 
and  Apple  prejudices  from  days  gone  by 

Pricing  for  the  Tiger  server  will  be  the 
same  as  for  Panther:  just  under  $1,000  for 
unlimited  users;  a  10-client  license  costs 
$500.  Subscribers  to  the  Apple  Mainten¬ 
ance  Program  will  get  the  updated  operat¬ 
ing  system  as  part  of  their  maintenance 
service.  The  suggested  retail  price  for  the 
Tiger  client  operating  system  is  $130.  ■ 

Servers 

Subscribe  to  our  free  newsletter. 
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Get  optimum  performance  from  every  server  and 
workstation  across  your  network  -  automatically 

Your  car  needs  routine  maintenance  to  keep  performing  at  peak 
operation— so  does  your  computer.  Just  as  you  would  never  run  your 
car  without  oil,  you  shouldn’t  even  think  about  running  your  computers 
without  an  automatic  defragmenter. 

Fragmentation  rapidly  corrodes  the  performance  of  every  single 
computer  on  your  network.  Without  regularly  scheduled  disk 
defragmentation,  even  your  most  expensive  system  will  slow  down  and 
eventually  crash. 

Diskeeper®  8.0  Set  It  and  Forget  It®  disk  defragmenter  restores 
computer  speed  to  like-new  and  keeps  it  that  way  automatically,  in  the 
background,  and  unnoticed  by  users.  With  Diskeeper,  your  computers 
always  run  at  optimum  performance! 


Diskeeper  Turbo-boosting  features: 


Very  fast  defragmentation  engine 

Boot  time  defrag  safely  defragments 
critical  system  files 

Set  It  and  Forget  It  scheduling  runs 
when  you  want  it  to 


Quickly  defragments  very  large 
server  volumes 

Smart  scheduling  defragments 
disks  when  needed 

Customizable  priority  settings 


“Disk  fragmentation  can  cause  performance  problems. 
You  should  consider  running  a  defragmentation 
program  on  a  regular  basis.” 

-Microsoft  Windows  NT  Server  Resource  Guide* 


Turbo  boost  your  performance  - 
Get  Diskeeper  today! 

www.diskeeper.com/nwdk89 

or  call  1-800-829-6468  x4287 

for  more  info  and  free  30-day  trialware. 
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Spam  and  virus  protection  at  an  affordable  price 


•  No  per  user  license  fees 

•  Prices  starting  at  $1199 

•  Powerful,  enterprise-class  solution 


ARRACUDA 

NETWORKS 


reserved.  Reclaim  Your  Email. and  Barracuda  Spam  firewall  are  either 
itworks.  Inc  and  or  it  subsidiares  in  the  United  States  and  or  other  countries. 


Order  a  free  evaluation  unit  at 
www.barracudanetworks.com 


POWERFUL  EASY  TO  US 


AFFORDABLE 


Aggressive  Reseller  Program 

Get  more  info  by  visiting  www.barracudanetworks.com/Nl 
or  by  calling  1-888-ANTl-SPAM  or  408-342-5400 
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■  PORTALS  B  MESSAGING/GROUPWARE 

■  E-COMMERCE  ■  SECURITY 

■  MIDDLEWARE  ■  DIRECTORIES 

■  NETWORK  AND  SYSTEMS  MANAGEMENT 

■  WEB  SERVICES 


■  Sybase  subsidiary  iAnywhere  has 
added  smart  phones  based  on  Micro¬ 
soft's  Windows  Mobile  software  to  the 
list  of  platforms  supported  by  its  Af- 
aria  software  for  securing  devices  in 
the  field.  Afaria  Security  Manager  is  a 
client/server  product  that  helps  man¬ 
agers  secure  company  data  on  de¬ 
vices  by  enforcing  the  use  of  pass¬ 
words  and  encrypting  data.  Admin¬ 
istrators  can  protect  against  theft  by 
setting  the  software  to  erase  data 
from  a  device  if  a  user  enters  the 
wrong  password  several  times.  Secur¬ 
ity  Manager  supports  devices  based 
on  the  Palm,  Windows  CE,  Pocket  PC 
and  Pocket  PC  Mobile  platforms. 
Afaria  Security  Manager  costs  $29 
per  device.  The  server  component 
costs  $5,000. 

■  IBM/Lotus  recently  fired  another 
shot  at  rival  Microsoft  by  adding  what 

it  calls  an  “Exchange  Killer”  to  its 

Express  software.  The  company's 
Domino  Messaging  Express  is  the 

third  collaboration  tool  in  the  Express 
line,  which  now  includes  60  separate 
offerings  from  across  the  IBM  portfo¬ 
lio  such  as  DB2,  WebSphere  Com¬ 
merce,  WebSphere  Business  Connect¬ 
ion  and  WebSphere  Portal.  Express  is 
the  name  IBM  has  given  to  versions  of 
its  products  that  restrict  the  number 
of  users  to  fewer  than  1,000  and  offer 
licensing  price  cuts  of  up  to  40%.  The 
lineup  also  includes  hardware  and  ser¬ 
vices.  Domino  Messaging  Express 
supports  the  Notes  client  and  Micro¬ 
soft  Outlook,  and  a  variety  of  Web 
browsers  and  standards- based  POP3 
and  Internet  Message  Access  Proto¬ 
col  e-mail  clients.  The  Messaging 
Express  software  runs  on  Linux,  Win¬ 
dows  and  OS/400.  Exchange  runs  on 
Windows  and  uses  Outlook  and  Inter¬ 
net  Explorer  as  its  client  software. 
Users  migrating  from  a  different  plat¬ 
form  can  get  Messaging  Express  for 
$48  per  user,  including  the  server  soft¬ 
ware.  For  new  users,  the  price  is  $98 
per  user.  Exchange  Server  2003  has 
both  per-user  and  per-CPU  pricing. 
The  Standard  Edition  costs  $699  per 
CPU  with  a  client  access  license  of 
$67  per  user. 


Is  Microsoft  changing  its  stripes? 


Unlikely  bedfellows 

Industry  and  customer  pressure  is  changing  the  competitive  landscape 
for  Microsoft,  which  has  signed  partnership  deals  in  the  past  few  months 
with  its  most  bitter  rivals,  Sun  and  Oracle. 


Partner 

Deal 

Quote  of  note 

Sun 

Ten-year  collaboration  agreement  signed  in 
April  is  aimed  at  building  interoperability 
among  clients  and  servers;  settlement  of  all 
pending  litigation  including  $700  million 
payment  by  Microsoft  to  Sun  to  settle  anti¬ 
trust  issues  and  a  $900  million  payment  by 
Microsoft  to  resolve  patent  issues. 

"We  really  are  partners.  It’s  a 
strange  and  unusual  thing." 

—  Scott  McNealy,  president,  Sun 

Oracle 

In  the  first  partnership  of  its  kind  between 
the  two  bitter  rivals,  Oracle  joined  Microsoft's 
Visual  Studio  Industry  Partner  program  in 
May.  Oracle  will  offer  tools  for  tighter 
integration  between  Visual  Studio  .Net  2003 
and  Oracle  database  software,  making  it 
easier  to  develop  and  deploy  Oracle-based 
applications  on  the  Windows  platform. 

"By  integrating  more  closely 
with  Visual  Studio,  we  will 
make  it  easier  for  Windows 
developers  to  harness  the 
power  of  Oracle  database." 

— Andrew  Mendelsohn,  senior  vice 
president  of  database  server 
technologies,  Oracle 

■  BY  JOHN  FONTANA 

Now  that  Microsoft’s  six-year  anti-trust 
battle  is  over  and  the  company  has  ham¬ 
mered  out  historic  partnerships  with  bitter 
rivals  Sun  and  Oracle,  is  the  vendor  on  a 
path  to  becoming  a  kinder, gentler  industry 
titan? 

“I’m  not  so  sure  kinder  and  gentler  is  the 
starting  point  to  describe  Microsoft.  It’s 
more  like  being  more  pragmatic,”  says 
Jonathan  Eunice,  an  analyst  with  lllumi- 
nata.  “Pragmatism  means  companies  like 
Microsoft,  Sun  and  Oracle  can  somewhat 
bury  the  hatchet  and  work  together,  but  it’s 
certainly  not  warm  feelings  all  around.  It’s 
an  enlightened  self-interest.” 

The  pragmatism,  which  has  been  nur¬ 
tured  in  the  four  years  since  Steve  Ballmer 
took  over  as  Microsoft’s  CEO,  and  the 
heightened  self-interest  have  been  born 
from  changes  in  the  industry  and  the 
economy. 

“Don’t  mistake  [these  partnerships]  for 
altruism.  It  is  forces  in  the  marketplace  that 
the  industry  has  to  respond  to,”  says 
Jonathan  Zuck,  president  of  the  Associa¬ 
tion  for  Competitive  Technology  an  indus¬ 
try  group  that  backed  Microsoft  during  its 
anti-trust  trial  and  in  May  added  Oracle  to 
its  list  of  3,000  members.“It’s  a  maturation 
of  vendors  as  well  as  customers.  The  cus¬ 
tomers  are  beyond  gee-whiz  and  now  have 
platforms  that  need  to  work  together.  They 
are  demanding  it  from  the  vendors.” 

Those  demands  show  that  end  users 
have  soured  on  the  acrimonious  battles 
between  Microsoft  and  its  rivals  that  have 
stymied  interoperability  and  raised  net¬ 
work  costs.  Microsoft,  Sun  and  Oracle  hope 
their  partnerships  can  correct  those  trends. 

Experts  say  Microsoft  has  not  so  much 
changed  its  spots  as  it  has  adapted  to  pre¬ 
vailing  attitudes  and  realized  that  partners, 
rivals  and  end  users  now  share  a  portion  of 
the  driver’s  seat  Microsoft  hogged  for  the 
past  decade. 

“The  ’90s  were  a  great  decade  for 
Microsoft  in  that  it  set  the  standard  and  oth¬ 
ers  followed,”  says  Paul  DeGroot,an  analyst 
with  research  firm  Directions  on  Microsoft. 
“But  with  the  rise  of  the  Internet  and  rising 
concerns  over  Microsoft’s  dominance,  peo¬ 
ple  saw  the  other  side  of  the  coin  in  that  if 
they  let  Microsoft  set  the  standard,  it 
would  be  hard  to  have  any  choices.” 

It’s  the  waning  of  that  dominance  that 
has  Microsoft  in  a  friendlier  mood, 
experts  say.  The  company  is  partnering 
and  bowing  to  customer  demands 


because  of  pressure  from  Java  develop¬ 
ment  tools,  alternative  operating  systems 
such  as  Linux,  and  to  the  emergence  of 
Web  services. 


■  BY  JOHN  FONTANA 

Groove  Networks  last  week  added  fea¬ 
tures  that  move  the  collaboration  tool 
closer  to  becoming  a  universal  front  end, 
which  lets  users  access  and  share  data 
from  corporate  back-end  systems. 

Groove  Virtual  Office  3.0,  previously 
called  Groove  Workspace,  is  a  client-side 
technology  that  makes  it  easier  for  users 
to  share  files,  either  on  the  network  or 
their  own  hard  drive,  and  work  with  data 
offline.  Groove  also  has  server  software 
that  has  been  upgraded  with  Virtual 
Office  3.0  to  make  it  possible  for  compa¬ 
nies  to  integrate  existing  authentication 
and  authorization  technology,  and 
deploy  auditing  features  that  help  users 
comply  with  regulatory  rules  for  storing 
and  using  data. 

Groove  also  has  tuned  the  software  to 
work  in  the  background  more  efficiently, 
improving  the  performance  for  replicat- 


“We  collectively  think  all  of  this  partner¬ 
ing  is  a  good  thing,”  says  Steve  Linstead, 
program  manager  and  directory  services 

See  Microsoft,  page  22 


ing  data  and  workspaces. 

Groove’s  software,  first  introduced  in 
2000,  is  a  collaboration  tool  that  sup¬ 
ports  the  notion  of  a  workspace.  Users  of 
that  workspace  can  share,  edit  and  store 
data  in  the  workspace  and  collaborate 
securely  across  the  Internet. 

First  linked  with  the  peer-to-peer  craze, 
Groove’s  offering  now  is  showing  its  true 
colors  as  a  collaboration  tool,  experts  say 

“I  would  describe  this  software  with  the 
word  ‘chameleon,’”  says  Pfeter  O’Kelly,  an 
analyst  for  Burton  Group. “Some  think  of 
it  as  file  sharing  or  as  an  asynchronous 
tool.  Some  think  of  it  as  Web  conferenc¬ 
ing  and  sharing  documents  online  or 
look  at  it  for  its  offline  capabilities.  It  is  all 
that  and  more.” 

Groove  officials  say  the  new  features 
provide  more  of  a  “last  mile”  for  connect¬ 
ing  workgroups  with  each  other  and  with 
back-end  systems  and  doing  it  with 

See  Groove,  page  22 


Groove  release  improves 
collaboration  software 
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NetworkWorld 


The  Business  Software  Alliance  is  out 
with  its  latest  guestimate  of  the  loss 
that  software  vendors  suffered  in  the 
past  year  because  of  piracy.  The  study 
methodology  looks  reasonable,  but  the 
message  that  the  group  read  into  the 
results  and  that  most  of  the  press  accepts  is 
basically  flawed. 

The  BSA  is  best  known  for  its  vigorous 
enforcement  of  software  licenses  by  con¬ 
ducting  audits  of  businesses.  Based  on 
their  press  releases,  BSA  seems  to  be  quite 
successful  in  the  audit  business. 

In  early  July,  the  BSA  released  a  “Global 


Actual  losses  or  wishful  thinking? 


Software  Piracy  Study”  (www.bsa.org/glob- 
alstudy/).  The  summary  says  “36%  of  the 
software  installed  on  computers  world¬ 
wide  was  pirated  in  2003,  representing  a 
loss  of  nearly  $29  billion.”  The  first  part  of 
this  claim  1  can  believe,  but  I  rather  doubt 
the  second  part. 

The  study  was  conducted  by  IDC  (a  sister 
organization  to  Network  World). The  report 
on  the  BSA  Web  page  contains  a  descrip¬ 
tion  of  the  methodology  IDC  used  to  con¬ 
duct  the  study  It  is  not  as  detailed  a 
methodology  description  as  it  could  have 
been  but,  based  on  what  it  does  say,  IDC 
approached  the  problem  about  as  well  as 
one  can  approach  a  problem  where  most 
of  the  actual  data  only  can  be  estimated. 

But  there  is  no  way  the  data  in  the  report 
can  support  some  of  the  things  the  report 
says.  In  particular,  there  is  no  data  that  sup¬ 
ports  the  assertion  that  the  estimated 


amount  of  piracy  cost  software  vendors 
“nearly  $29  billion.” 

There  is  no  real  problem  with  the  BSA  try¬ 
ing  to  figure  out  how  much  software  is 
installed  on  computers  around  the  world 
nor  is  there  a  problem  with  the  BSA  trying 
to  figure  out  how  much  of  that  software 
was  legitimately  purchased.  From  these 
two  facts  the  BSA  can  figure  out  what  per¬ 
cent  of  the  software  has  been  pirated,  and 
it  does  so.  But  the  alliance  cannot  just  mul¬ 
tiply  the  estimate  of  the  pirated  software  by 
the  sales  price  of  that  software  to  come  up 
with  how  much  software  vendors  would 
have  made  if  there  had  been  no  piracy  The 
BSA  also  needed  to  figure  out  how  much 
of  the  software  actually  would  have  been 
purchased  if  the  user  had  to  pay  the  sales 
price. The  BSA  doesn’t  do  this,  or  if  it  does, 
the  group  fails  to  mention  doing  so  in  its 
report.  The  $29  billion  figure  looks  impres¬ 


www.nwfusion.com 


sive,  but  1  expect  the  actual  number  is  a 
very  small  fraction  of  that. 

I  can  understand  the  BSA  finessing  the 
difference  between  actual  losses  and  the 
value  of  pirated  software  but  1  don't  under¬ 
stand  the  lethargy  of  the  media  that  blindly 
repeats  the  bogus  claims.  The  initial  report 
from  Reuters  (www.nwfusion.com,  Doc- 
Finder:2930)  described  the  problem  as  “the 
global  trade  in  pirated  software”  as  if  some 
one  was  making  $29  billion  from  selling 
stolen  software.  I  hope  someday  the  press 
will  stop  taking  industry  pronouncements 
at  face  value  and  think  before  they  print. 

Disclaimer:  Even  for  Harvard,  $29  billion 
would  be  real  money  but  1  didn't  ask  its 
opinion  on  the  reality  of  the  money 

Bradner  is  a  consultant  with  Harvard 
University's  University  Information  Systems. 
He  can  be  reached  at  sob@sobco.com. 


Groove 

continued  from  page  21 
greater  skill. 

“Groove  has  always  met  the  security 
requirements  we  deal  with  in  our  intelli¬ 
gence  work,  and  over  the  years  the  per¬ 
formance  has  become  faster  and  requires 
less  bandwidth,”  says  Kevin  Newmeyer, 
program  director  for  the  Inter-American 
Committee  Against  Terrorism  in 
Washington,  D.C. 

Newmeyer  uses  Grooves  software  to 
connect  intelligence  agents  working  in 
offices  around  the  world. 

He  says  the  performance  enhancements 
help  tremendously  when  dealing  with 
offices  in  less  tech-sawy  countries  such  as 
Paraguay. 

Virtual  Office  3.0  includes  a  new  Launch 
Bar,  one  location  from  which  to  access 
workspaces,  contacts  and  other  activities. 

The  software  also  adds  a  folder  synchro¬ 
nization  capability  that  lets  users  share 
folders.  Different  from  Windows  file  shar¬ 
ing,  the  Groove  tool  replicates  a  folder  to 
another  user’s  hard  drive,  synchronizes 
versions  and  allows  offline  use. 

Groove  also  has  beefed  up  its  alerts,  let¬ 
ting  users  set  more  fine-grained  controls 
and  more  variables  to  see  when  users 
come  online,  access  workspaces  and 
work  with  content. 

Another  major  improvement  comes  in 
the  Forms  technology,  which  Groove  has 
turned  into  a  robust  development  envi¬ 
ronment  for  creating  business  process 
applications  linked  to  back-end  systems. 
Version  3.0  ships  with  10  customizable 
forms  templates. 

On  the  server  side,  Groove  has  added 
features  to  its  Management  Server.  This 
adds  support  for  digital  certificates  gener¬ 
ated  by  third-party,  public-key  infrastruc¬ 
ture  systems  so  users  can  integrate 
Groove’s  offering  into  their  existing 
authentication  technology. 

Groove  also  is  addressing  regulatory 
issues  by  adding  auditing  capabilities  that 


In  the  groove 

Groove  Networks  has  added  a 

number  of  changes  to  Virtual 

Office  3.0,  the  newest  edition  of 

its  collaboration  tool. 

•  Web  Services  API  -  Features  and 
functions  of  Groove,  especially 
synchronization  and  presence 
awareness  can  be  integrated  with 
other  applications. 

•  Net  API -Microsoft's  Visual  Studio 
.Net  can  be  used  as  a  development 
environment  for  creating  custom 
tools  or  agents  that  run  within 
Groove. 

•  Forms  technology- New  forms 
capability  allows  for  connection  to 
back-end  databases  and  corporate 
systems. 

•  Folder  synchronization  -  Users 
can  securely  share  folders  across 
multiple  PCs  and  across  firewalls. 

•  Regulatory  compliance -Audit¬ 
ing  features  capture  activity  in 
workspaces  and  data  stored  in 
Groove. 


capture  workspace  activity  and  data  to 
document  whom  is  accessing  what  infor¬ 
mation,  when  and  how.  The  Relay  Server 
has  been  improved  with  load-balancing 
features  that  improve  throughput. 

Groove  Virtual  Office  3.0  runs  on 
Microsoft  Windows  NT  4.0  (Service  Pack  5 
or  later),  Windows,  XP  2000,  98  and  ME, 
and  requires  Internet  Explorer  6.0. 

Virtual  Office  Professional  Edition  is 
priced  at  $179.  The  Project  Edition  costs 
$229,  and  the  File  Sharing  Edition  costs 
$69.  Enterprise  Relay  Server  is  priced  at 
$15,000,  while  the  Enterprise  Management 
Server  costs  $20,000,  and  the  Enterprise 
Integration  Server  costs  $10,000.  ■ 


Microsoft 
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architect  for  Johnson  Controls,  a  Mil¬ 
waukee  supplier  of  automotive  parts  and 
building  controls,  including  those  for  heat¬ 
ing  and  cooling.“If  these  partnerships  work 
out,  it  will  help  our  interoperability  issues 
substantially  If  Microsoft  and  the  others 
truly  make  the  customers’  needs  their 
focus,  that  would  be  the  Holy  Grail  for  us,” 
he  says.  “But  words  without  action  are 
meaningless.” 

Most  of  what  exists  is  words  in  the  Sun- 
Microsoft  partnership,  which  was  signed  in 
April  and  promised  to  improve  interoper¬ 
ability  among  their  products. 

Two  weeks  ago,  Sun’s  Scott  McNealy  said 
at  the  company’s  annual  JavaOne  confer¬ 
ence  that  Sun  and  Microsoft  would  launch 
the  first  phase  of  their  partnership  later  this 
summer.“We  are  going  to  try  to  solve  single 
sign-on  ...  so  users  can  log  in  to  the  net 
once  without  having  to  remember  multi¬ 
ple  passwords  and  they  can  have  their 
authentication  travel  across  Sun  and 
Microsoft  environments,”  he  said. 

McNealy  was  short  on  detail,  but  rival 
IBM  recently  said  its  single  sign-on  software 
would  support  both  Liberty  Alliance  speci¬ 
fications,  which  Sun  supports  exclusively, 
and  WS-Security  which  Microsoft  supports 
exclusively.  The  Sun-Microsoft  tandem 
could  move  to  neutralize  IBM’s  advantage 
and  in  the  process  solve  one  of  their  inter¬ 
operability  issues. 

Microsoft  says  its  partnership  with  Sun, 
which  include  settlement  of  their  pending 
litigation,  and  a  similar  legal  settlement  last 
year  with  AOL  Time  Warner,  have  cleared 
hurdles  that  were  blocking  future  product 
development,  according  to  Microsoft 
spokesman  Jim  Desler. 

“Since  the  start  of  the  anti-trust  trial  we 
are  five  years  older  but  10  to  15  years  wiser,” 
Desler  says.“Interoperability  is  more  impor- 
tant.We  are  hearing  that  from  customers.” 

And  feeling  it  financially,  which  some 
end  users  say  is  another  force  acting  on 


Microsoft. 

“They  are  having  a  harder  time  making 
money  off  their  core  products  so  they 
need  to  be  that  gentler  giant,”  says  Bruce 
Elgort,  manager  of  information  services 
for  Sharp  Microelectronics  of  the  Ameri¬ 
cas  of  Camas,  Wash. 

Microsoft  is  feeling  the  financial  pinch 
as  year-over-year  revenue  gains  shrink, 
desktop  operating  system  and  Office 
upgrades  slow,  and  price  slashing  is  used 
to  win  sales. 

Financial  analysts  forecast  a  mere  5% 
increase  in  revenue  for  fiscal  2005  (which 
began  July  1)  over  this  year’s  estimated 
$36.5  billion,  which  is  a  far  cry  from  the 
double-digit  growth  Microsoft  has  enjoyed. 
Microsoft  is  discounting  to  spur  sales 
including  rebates  as  high  as  $15,000  to 
small  businesses  as  an  incentive  to  buy 
Windows  XR according  to  analysts.  It’s  also 
offering  a  60%  discount  on  software  to 
Paris  in  an  attempt  to  cool  its  interest  in 
open  source  alternatives. 

Microsoft’s  efforts  and  its  partnership 
with  Sun  highlight  a  battle  Microsoft  hasn’t 
experienced  for  some  time.  In  fact, 
Microsoft  lost  a  contract  to  Sun,  which  has 
long  struggled  with  its  identity  as  a  soft¬ 
ware  provider,  to  supply  Allied  Irish  Banks, 
Ireland’s  second-largest  lender,  with  operat¬ 
ing  systems  and  productivity  software  for 
7,500  personal  computers. 

It  all  adds  up  to  Microsoft  having  to  rede¬ 
fine  itself  and  its  relationships  within  the 
industry. 

“It’s  a  great  idea  for  the  vendors  to  work 
on  tighter  integration,”  says  Nelson  Ruest, 
a  consultant  with  Resolutions  Enterprises 
in  Victoria,  B.C.,  and  co-author  of 
Windows  Server  2003:  Best  Practices  for 
Enterprise  Deployments.  “The  industry 
doesn’t  benefit  from  strife.  It’s  better  to 
have  saner  competition.”  ■ 
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XO  expands  offerings 
in  wake  of  UNE-P  rulings 


IPass  beefing  up 
policy  enforcement 


■  BY  JIM  DUFFY 

XO  Communications  likes  to  position 
itself  as  the  nation’s  largest  facilities-based 
provider  of  telecom  services  “focused 
exclusively  on  businesses.” 


■  Yahoo  has  acquired  Oddpost,  a 

start-up  that  provides  an  innovative, 
Web-based  e-mail  service,  and  plans 
to  use  its  technology  to  spruce  up 
Yahoo  Mail  and  other  Yahoo  services. 
Like  other  Web-based  e-mail, 

Oddpost  uses  a  standard  Web  brows¬ 
er,  but  its  interface  functions  more 
like  that  of  a  desktop  program  such 
as  Microsoft  Outlook.  For  example, 
users  can  organize  or  delete  mes¬ 
sages  by  dragging  them  into  folders 
instead  of  having  to  reload  a  Web 
page  each  time.  The  Oddpost  service 
works  using  Dynamic  HTML,  XML 
and  Simple  Object  Access  Protocol. 

It  does  not  use  Java  and  requires  no 
downloads  or  plug-ins.  It  currently 
works  only  with  Microsoft's  Internet 
Explorer  browser,  although  Oddpost 
had  been  developing  a  version  for 
Mozilla. 

■  Sprint  and  the  Swedish 
National  Research  and 
Education  Network  have  repor¬ 
tedly  set  a  world  record  for  sending 
large  amounts  of  data  speedily 
across  the  Internet.  The  Sprint/ 
SUNET  team  sent  nearly  840G  bytes 
of  data  —  the  equivalent  of  140  DVDs 
—  from  a  PC  in  San  Jose  to  another 
PC  in  Lulea,  Sweden,  in  less  than  27 
minutes.  The  bulk  data  traveled  10,157 
miles  across  Sprint  and  SUNET's 
production  Internet  backbones  at 
4.23G  bit/sec.  The  Sprint/SUNET 
transmission  is  12%  faster  than  the 
previous  record  held  by  the  California 
Institute  of  Technology  and  CERN 
using  a  non- public  advanced 
research  network  rather  than  a  com¬ 
mercial  network. 


But  that’s  not  to  say  it’s  limited  to  enter¬ 
prise  businesses.  Following  recent  court 
decisions  that  essentially  do  away  with 
key  carrier  network  access  wholesaling 
regulations, XO  is  stepping  into  the  breach 
by  launching  a  wholesale  local  voice  ser¬ 
vice  for  competitive  local  exchange  carri¬ 
ers  (CLEC). 

The  XO  Wholesale  Local  Voice  Services 
let  service  providers  offer  local  voice  and 
integrated  services  to  businesses  in  36  U.S. 
markets.  The  offering  was  made  possible 
through  XO’s  recent  acquisition  of  bank¬ 
rupt  carrier  Allegiance  Telecom. The  buy¬ 
out  expanded  XO’s  network  presence  in 
local  U.S.  markets  and  lets  the  carrier  now 
offer  additional  facilities-based  services  to 
other  carriers  looking  to  provide  voice 
and  integrated  services  locally.  XO,  which 
emerged  from  bankruptcy  18  months  ago, 
closed  the  Allegiance  deal  June  21. 

Interest  in  the  new  XO  offering  has  been 
high  in  light  of  a  Washington,  D.C.,  appeals 
court’s  decision  in  March  to  order  an  end 
to  portions  of  the  FCC’s  unbundled  net¬ 
work  elements  platform  (UNE-P)  policy, 
says  XO  CEO  Carl  Grivner.  UNE-P  is  a  regu¬ 
lation  in  the  Telecommunications  Act  of 
1996  designed  to  give  competitors  access 
to  the  local-access  network,  which  the 
RBOCs  dominate. 

Under  UNE-P  RBOCs  were  to  sell  access 
to  their  local  facilities  to  CLECs  at  govern¬ 
ment-determined  rates  in  exchange  for 
entry  into  the  long-distance  business.  Now 
that  UNE-P  has  been  all  but  dissolved, 
RBOCs  are  expected  to  raise  wholesale 
local  facility  leasing  rates  to  CLECs,  which 
would  raise  retail  fees. 

“It’s  favoritism  towards  the  monopoly- 
embedded  base,”  Grivner  says.“It’s  not  right 
in  terms  of  facilities-based  competition.” 

CLEC  efforts  to  overturn  the  ruling  have 
been  blocked  —  the  most  recent  case 
being  a  month  ago  when  Supreme  Court 
Chief  Justice  William  Rehnquist  refused  a 
petition  for  a  stay  of  the  court’s  decision. 

Grivner  says  a  lot  of  UNE-P  carriers  now 
are  working  with  XO.The  carrier  is  set  to 
announce  one  major  carrier  deal,  and 
expects  more  big  names  to  sign  up  for  the 
XO  wholesale  offering. 

“There  are  more  opportunities  ahead  of 
us,”  Grivner  says. 

Industry  experts  agree.  U.S.  wholesale 
wireline  revenue  will  top  $47.9  billion  in 
2004,  according  to  The  Yankee  Group. 

See  XO,  page  24 


■  BY  DENISE  PAPPALARDO 

Global  service  provider  iPass  is  intro¬ 
ducing  security  features  this  week  aimed 
at  enforcing  the  corporate  security  poli¬ 
cies  of  its  customers. 

The  four  features  fall  under  a  product 
umbrella  called  iPass  Policy  Orchestration. 
The  features  —  endpoint  self-quarantine, 
dynamic  policy  retrieval,  assessment  verifi¬ 
cation  and  coordinated  enforcement  — 
will  be  rolled  out  throughout  the  rest  of  the 
year,  says  Roy  Albert,  CTO  at  iPass. 

One  industry  expert  gives  the  initiative  a 


positive  review. 

“One  of  the  things  that  is  impressive 
about  this  announcement  is  that  [iPass] 
has  spent  a  lot  of  time  integrating  every 
possible  security  client  you  can  run  on  a 
laptop,”  says  Abner  Germanow,  program 
manager  at  1DC. 

The  service  provider  is  working  with  45 
security  vendors  to  better  integrate  their 
wares  with  iPass’  Corporate  Access  world¬ 
wide  remote-access  service.  IPass  already 
has  integrated  the  products  with  its  net¬ 
work,  but  still  is  working  out  the  kinks  of 
rolling  out  services  based  on  the  technol¬ 
ogy,  Albert  says. 

The  vendors  range  from  well-known  to 
lesser-known  organizations  and  include 
AppGate,  Cisco,  Check  Point,  Internet  Sec¬ 
urity  Systems  and  Mobile  Automation.  A 
full  list  of  the  security  technology  partners 
can  be  found  at  www.nwfusion.com,  Doc- 
Finder:  2944. 

Endpoint  self-quarantine  uses  a  personal 
firewall  to  ensure  users’  PCs  adhere  to  cor¬ 
porate  security  policies  as  they  attempt  to 


surf  the  Internet  or  connect  to  their  corpo¬ 
rate  VPN.  Users  required  to  have  the  latest 
Microsoft  security  patch  to  access  their 
VPN  might  be  denied  access  for  not  having 
it,  but  they  still  might  be  able  to  surf  the 
Internet. 

Dynamic  policy  retrieval  lets  network 
administrators  make  policy  changes  to 
how  all  users  access  the  corporate  net¬ 
work  directly  from  their  desktop. Today,  all 
policy  changes  go  through  the  iPass  trou¬ 
ble  ticket  system. 

Using  assessment,  remediation  and  patch 
management  systems,  the  iPass  assessment 


verification  feature  confirms  a  user’s  sys¬ 
tem  is  up  to  date  and  if  it’s  not,  the  correct 
security  patch  automatically  is  sent  to  that 
user’s  machine.  Whereas  endpoint  self¬ 
quarantine  merely  blocks  access  if  a  user 
does  not  meet  policy,  assessment  verifica¬ 
tion  works  to  remedy  the  non-compliance. 

The  coordinated  enforcement  feature 
specifically  addresses  VPN  access  policies 
at  the  customer’s  network,  after  a  user 
might  have  already  gone  through  the  end¬ 
point  self-quarantine  process.  IPass  is 
working  with  network  enforcement  sys¬ 
tems  such  as  Cisco’s  Network  Admission 
Control  and  Microsoft’s  Network  Access 
Protection  to  block  access  to  a  VPN  if  a 
user’s  PC  is  not  configured  correctly  or  is 
infected  with  a  virus.  Vendors  are  just 
introducing  these  systems  now  so  this  tea 
ture  likely  will  be  one  of  the  last  iPass 
makes  available. 

Two  existing  policy  enforcement  fea¬ 
tures, called  SecureConnect  and  continu¬ 
ous  policy  enforcement,  also  will  fall 

See  IPass,  page  24 


IPass  to  better  integrate  security 


IPass  plans  to  enhance  its  Policy  Orchestration  features  in  four 
ways  by  year-end. 


Service 

What  it  does 

Using 

Endpoint  self-quarantine 

Restricts  PC  if  it  does  not  adhere 
to  company  security  policy. 

Personal  firewall 

Dynamic  policy  retrieval 

Automates  policy  changes  for 
customers. 

Active  Directory 

Assessment  verification 

Confirms  PC  has  security 
patches  and  updates. 

Remediation  and  patch 
system  management 

Coordinated  enforcement 

Confirms  VPN  access  at  user’s 
network  server. 

Cisco  Network 
Admission  Control 

Service  Providers 
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fill  1  5  ouston,  we  have  a  problem.” 
SsHs  Remember  those  words  from 
I  I  Apollo  13?  That  story  still  gives 
me  goose  bumps  —  a  technically  savvy 
group  of  engineer-astronauts  salvaged  a 
mission  gone  horribly  wrong.  What  about 
“Rocket  Boys,”  the  story  of  a  West  Virginia 
schoolboy’s  journey  from  amateur  rocket- 
launcher  to  NASA  rocket  scientist? 

This  is  our  cherished  science  and  engi¬ 
neering  legend:  Talented  engineers 
change  the  world  (usually  with  the  help 
of  caffeine  and  all-nighters). The  story  res¬ 
onates,  no  matter  how  often  it’s  retold. 
Remember  “Soul  of  a  New  Machine”?  The 
founding  of  Apple  Computer,  SAIC,  the 
Internet? 

Many  of  us  have  come  to  believe  this  is 


www.nwfusion.com 


No  substitute  for  government-funded  research 


the  way  it  always  will  be:  Great  engineers 
will  continue  to  do  great  things,  driving 
the  engine  of  innovation  that  fuels  the 
richest  economy  the  world  has  ever 
known. 

There’s  just  one  catch:  The  fuel  supply 
for  that  engine  is  dwindling,  at  least  in  the 
U.S.  According  to  the  latest  National 
Science  Foundation  (NSF)  studies,  the 
percentage  of  scientists  and  engineering 
graduates  has  been  declining  for  decades 
(see  www.nwfusion.com,  DocFinder: 
2931,  for  details). 

For  network  specialists,  the  news  is  even 
gloomier.  Many  of  the  traditional  sources 
of  funding  for  network  research,  such  as 
the  NSF  and  Defense  Advanced  Research 
Projects  Agency  (DARPA),  are  funneling 
their  dollars  elsewhere.  (I  noted  in  a  pre¬ 
vious  column  the  critical  role  both  agen¬ 
cies  played  in  funding  and  operating  the 
early  Internet.)  According  to  sources 
familiar  with  the  NSF  network  research  is 
no  longer  a  top  priority  DARPA  has  elect¬ 
ed  to  focus  on  near-term  battle  technolo¬ 


gies  rather  than  long-range  strategic  inno¬ 
vation. 

You  might  be  asking  why  any  of  this  is  a 
problem.  Why  do  we  need  government 
funding  for  network  research  —  or  any 
other  research  —  in  the  first  place?  Can’t 
industry  take  up  the  slack? 

Yes,  private  companies  do  invest  in 
research  and  development.  Microsoft, 
IBM, Cisco,  AT&T  and  others  operate  some 
of  the  finest  research  facilities  in  the 
world.  But  to  compete  effectively,  these 
companies  need  to  constantly  cut  out 
“waste”  —  expenditures  that  don’t  con¬ 
tribute  directly  to  the  bottom  line.  Much 
great  research  fits  that  definition,  includ¬ 
ing  the  Internet  (AT&T  actually  declined 
to  participate  in  the  early  Internet).  So 
relying  on  private  industry  to  conduct  pri¬ 
mary  research  is  asking  companies  to  go 
against  their  best  interests  and  those  of 
their  shareholders  —  something  they’re 
unlikely  to  do  for  a  sustained  period. 

Moreover,  public  research  drives  broad¬ 
er  industry  innovation.There’s  a  great  eco¬ 


nomics  paper  called  “The  Contribution  of 
Public  Science  to  Industrial  Innovation: 
An  Application  to  the  Pharmaceutical 
Industry”  that  quantifies  exactly  how  and 
how  long  it  takes  (see  DocFinder:  2932). 

According  to  the  author,  Andrew  Toole, 
industry  firms  appropriate  a  return  on 
public  science  investment  in  the  range  of 
12%  to  41%,  with  a  lag  between  funding 
and  commercialization  of  17  to  19  years. 
The  author  concludes  that  publicly  fund¬ 
ed  research  is  inextricably  linked  to  indus¬ 
trial  product  innovation. 

Think  about  it:Today’s  Internet  economy 
is  based  on  government-funded  research 
done  in  the  1970s  and  ’80s.  But  we’re  not 
making  the  equivalent  investment  today 
Coupled  with  the  declining  interest  of  stu¬ 
dents  in  pursuing  engineering  degrees. . . . 
Houston,  we  have  a  problem. 

Johnson  is  president  and  chief  research 
officer  at  Nemertes  Research,  an  indepen¬ 
dent  technology  research  firm.  She  can  be 
reached  at  johna@nemertes.com. 


Verizon  Wireless,  Lucent  strike  deal 


■  BY  GRANT  GROSS 

Verizon  Wireless  will  spend  $5  billion  on 
a  variety  of  network  equipment,  software 
and  services  from  Lucent  in  an  agreement 
announced  last  week. 

Verizon  Wireless  agreed  to  buy  $5  billion 
worth  of  network  equipment  within  six 
years,  although  past  deals  between  the 
two  companies  have  been  completed  in 
three  to  four  years,  says  Debra  Lewis,  a 
spokeswoman  for  Lucent.  The  companies 
signed  a  similar  $5  billion  agreement  in 
March  2001. The  two  Verizon  Wireless 


xo 

continued  from  page  23 

Wholesale  services  now  account  for  nearly 
25%  of  total  U.S.  wireline  telecom  market, 
the  firm  says. 

At  first  blush,  it  would  seem  that  XO  is 


agreements  are  “among  our  largest  con¬ 
tracts  awarded,”  Lewis  says. 

With  the  latest  agreement,  Lucent  will 
continue  to  be  Verizon  Wireless’  primary 
next-generation  network  infrastructure 
supplier. The  equipment,  software  and  ser¬ 
vices  from  Lucent  will  help  Verizon 
Wireless  increase  the  coverage  and  capac¬ 
ity  of  its  existing  next-generation  voice  net¬ 
work  and  high-speed,  wide-area  Broad- 
bandAccess  data  network,  according  to 
the  companies.  Under  the  agreement, 
Lucent  will  provide  software  and  equip¬ 
ment  from  its  entire  product  line,  includ- 


offering  competitors  access  to  the  very 
enterprise  customers  it  courts.  But  such  is 
not  necessarily  the  case. 

In  some  instances,  XO’s  wholesale  carri¬ 
ers  need  to  find  an  alternate  wholesale 
provider  to  grant  access  to  the  customers 
they  already  own.  Second,  there  are 


ing  Bell  Labs-developed  wireless,  optical 
and  data  network  equipment.  Lucent 
Worldwide  Services  will  perform  network 
optimization,  integration  and  deployment 
services. 

The  agreement  includes  a  $525  million 
contract  announced  in  March,  naming 
Lucent  as  a  key  supplier  for  Verizon 
Wireless’  BroadbandAccess  high-speed 
data  network,  and  it  replaces  the  2001 
agreement. 

Gross  is  a  correspondent  with  the  IDG 
News  Service. 


plenty  of  small  and  midsize  businesses  to 
go  around. 

Third,  even  if  a  wholesale  carrier  wins  a 
new  customer  that  XO  could  have  served, 
XO  still  gets  a  share  of  the  revenue  from 
that  customer. 

XO’s  wholesale  services  consist  of: 

•  Wholesale  Integrated  Access,  which 
provides  voice  and  data  over  oneT-1  to  car¬ 
riers’  end  users  who  needs  at  least  six  ana¬ 
log  or  digital  voice  lines  and  512K  bit/sec 
of  data  speed. 

•  Wholesale  primary-rate  interface,  which 
provides  PRI  configurations  to  carriers’ end 
users. 

•  Wholesale  Digital  PBX,  which  provides 
T-l  digital  trunks  to  carriers’ end  users. 

XO  Wholesale  Local  Voice  Services  are 
available  in  36  markets  across  the  U.S. 
Each  integrated  Internet  and  voice  ser¬ 
vice  package  is  also  available  with  a 
variety  of  features,  including  call  for¬ 
warding,  three-way  calling,  caller  ID, 
directory  assistance  and  enhanced 
mailbox  options.® 


IPass 

continued  from  page  23 

under  the  Policy  Orchestration  umbrella. 
Before  a  user  authenticates  on  the  iPass 
network,  SecureConnect  checks  to  be 
sure  that  user’s  laptop  is  running  specific 
security  software,  not  necessarily  looking 
for  a  policy,  but  an  application. 

IPass’  continuous  policy  enforcement 
feature  ensures  that  a  user  will  maintain 
his  company’s  policy  while  connected. 
For  example,  if  the  security  policy  says  a 
personal  firewall  must  be  on  throughout  a 
connection,  this  feature  will  disconnect 
users  if  they  shut  down  their  firewall. 

All  of  the  service  provider’s  Policy 
Orchestration  features  will  be  integrated 
with  the  iPass  Connect  connectivity 
client. 

“Making  sure  that  each  user  connection 
is  safe  is  quite  challenging,”  IDC’s  Ger- 
manow  says.  But  iPass  has  done  a  good  job 
of  making  sure  those  connections  are  safe 
for  the  user  and  the  enterprise  network  to 
which  they  connect,  he  says. 

IPass  is  not  the  only  service  provider  to 
offer  integrated  policy  management  tools. 
In  February,  competitor  GoRemote  Inter¬ 
net  Communications  (formerly  known  as 
Gric  Communications)  also  announced  a 
comprehensive  policy  enforcement  secu¬ 
rity  system  it  calls  Total  Security  Pro¬ 
tection.  Fiberlink  also  offers  its  remote- 
access  customers  a  brand  of  integrated 
policy  enforcement.  All  three  offer 
remote-access  services  to  enterprise  users 
worldwide. 

IPass  says  its  Policy  Orchestration  fea¬ 
tures  will  be  rolled  out  over  the  next  sev¬ 
eral  months.The  service  provider  says  it  is 
in  the  process  of  determining  which  fea¬ 
tures  will  be  integrated  with  its  standard 
Corporate  Access  service  and  which  add¬ 
on  services  will  cost  more  each  month.® 


■ 

AT  A  GLANCE: 

XO  Communications 

Location: 

McLean,  Va. 

Founded: 

In  2000,  after  the  merger  of  Nextlink  and  Concentric. 

Management: 

Carl  Grivner,  CEO;  Wayne  Rehberger,  COO;  Bill  Garrahan, 
seniorVP  and  acting  CFO. 

Products: 

Nationwide  OC-192  backbone  in  60  U.S.  markets  offering  local  and 
long-distance  voice,  Internet  access,  VPN,  Ethernet,  wavelength,  Web 
hosting,  and  integrated  voice  and  data  services. 

Customers: 

Businesses  and  carriers 

2003  revenue: 

$1.1  billion 

Fast  Fact: 

XO  emerged  from  Chapter  11  bankruptcy  in  January  2003. 
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FOR  TYING  TELEWORKERS  TO  THE  ENTERPRISE 


A  Congress  fights  telework  malaise 


Frustrated  by  the  government's  dismal  telework  perfor¬ 
mance,  Rep.  Tom  Davis  (R-Va.),  chairman  of  the  House 
Government  Reform  Committee,  recently  held  a  hearing  to 
get  at  the  cause.  At  the  hearing,  he  quizzed  federal  agency 
leaders,  as  well  as  Sun  and  Cisco,  about  their  successful 
telework  programs.  Net.  Worker  Managing  Editor  Toni 
Kistner  quizzes  Davis  on  his  plans  for  holding  agencies' 
feet  to  the  fire. 


The  Office  of  Personnel  Management  report  states  federal  agencies  are 
at  14%  compliance  with  the  telework  mandate.  But  nearly  70%  of  federal  teleworkers  reside 
outside  the  Washington,  D.C.,  area.  How  do  you  plan  to  emphasize  telework  in  the  D.C.  region 
specifically,  where  continuity  of  operations  is  most  critical? 

We  may  legislate,  put  some  specific  mandates  on  these  areas  to  fulfill  the  guide- 
lines.There’s  a  greater  opportunity  for  telework  in  D.C.,  because  these  are  mostly 
front-office  people,  they’re  not  in  the  field.  We ’re  very  disturbed  by  the  fact  that 
managers  don’t  seem  to  get  this. 

You  mean  drafting  legislation  that  withholds  $5  million  from  each  agency  until  it  complies? 

Yes.  We’re  talking  about  money  because  that’s  what  agencies  understand. 

What  other  measures  are  you  considering? 

Tougher  reporting  requirements.  Rather  than  have  agencies  say  who’s  eligible  to 
telework,  let’s  have  them  come  up  with  who  is  ineligible  and  explain  why  That 
changes  the  whole  dynamic. 

The  departments  of  Homeland  Security  and  Justice  argue  that  sending  employees  home 
compromises  national  security.  But  aren't  such  agencies  -  by  virtue  of  their  central  loca¬ 
tion  -  making  themselves  more  vulnerable  to  terrorist  attack  by  not  teleworking? 

That’s  the  whole  point.They’re  sitting  there  with  a  big  bull’s  eye  on  them.  All  of 
our  records  are  wrapped  up  there;  it’s  a  one-stop  shop  for  terrorists. 

Do  you  have  specific  plans  to  target  high-security  agencies? 

The  answer  is  yes. You’re  going  to  see  more  aggressive  legislation  on  this.  We’re 
reviewing  a  whole  lot  of  options.  We’re  very  frustrated  with  the  level  of  compliance 
—  or  rather,  non-compliance  —  the  number  of  excuses,  limitations  and  ineligibili¬ 
ties  that  keep  coming  up  not  to  do  this. 

Rep.  Danny  Davis  (D-lli.)  is  proposing  telework  pilots.  But  pilots  have  been  around  for  years. 
Are  they  necessary? 

I’m  not  going  to  oppose  them,  but  we’re  way  beyond  pilots  at  this  point.The  big¬ 
ger  question  is,  how  do  we  change  the  managerial  culture  so  we  can  do  what  the 


Arm  twisting  telework 


Section  359  of  Public  Law  106-346  requires  that  100%  of  eligible  federal 
employees  telework  by  the  end  of  2004.  With  agencies  at  only  14%, 
Congress  is  taking  steps  to  force  compliance. 

Rep.  Frank  Wolf  (R-Va.)  introduced  an  amendment  to  the  Commerce  Department’s 
spending  bill  that  would  withhold  $5  million  from  the  budgets  of  the  Departments  of 
Commerce,  Justice  and  State  until  they  comply  with  the  telework  mandate. The  bill 
also  withholds  funds  from  the  federal  judiciary,  the  Small  Business  Administration 
and  the  Securities  and  Exchange  Commission.  It  recently  was  approved  in  the  House. 

Rep.  Tom  Davis  (R-Va.)  plans  to  draft  legislation  that  will  extend  the  Commerce 
Department's  spending  bill  amendment  to  all  Federal  agencies. 

Rep.  Danny  Davis  (R-lll.)  introduced  the  Continuity  of  Operations  Demonstration 
Project  Act,  which  authorizes  at  least  two  30-day  pilots  to  evaluate  whether  telework 
can  keep  the  government  running  in  an  emergency.The  pilots  would  rely  on  existing 
policies  and  funding. 

private  sector  is  doing  and  make  telework  more  widespread?  It’ll  help  us  in  recruit¬ 
ing  and  retention,  productivity  and  pubic  safety,  as  we  discussed. 

What  did  you  learn  from  Sun  and  Cisco  at  the  hearing? 

That  the  government  can  give  you  a  million  reasons  not  to  telework. 

What  are  your  next  steps? 

To  draft  legislation  —  in  this  Congress  or  not,  I  don’t  know.  We’re  increasingly  frus¬ 
trated,  especially  those  of  us  who  represent  the  Washington  region.  We  see  the  traf¬ 
fic  mounting  every  day  Federal  workers  can’t  get  back  and  forth  to  work.The  bot¬ 
tom  line  is,  these  managers  don’t  trust  the  people  who  work  for  them. 

That's  government  culture? 

It  is,  and  it’s  not  good  for  employees.  Who  wants  to  work  for  an  employer  who 
doesn’t  trust  you,  who’s  got  to  watch  you? 

Why  not  let  people  work  from  home  when  it  makes  sense,  when  their  kid  has  an 
early  ballgame,or  how  about  when  they  have  a  cold  and  don’t  want  to  come  in 
and  give  it  to  everybody  else? 

I'd  argue  most  employees  could  take  a  paperwork  day  every  week  or  two. 

That’s  right.There  is  time  you  need  to  catch  up.  And  for  a  lot  of  people  in  the 
Washington  suburbs,  really  wired  areas, you  have  everything  you  need  right  at 
home,  and  the  government’s  not  paying  for  it.  ■ 


B 


■Takes 

■  Another  sign  the  government  is  get 
ting  serious  about  meeting  telework 
goals  is  an  announced  partnership 
between  the  Environmental  Pro¬ 


tection  Agency  and  the  Office  of 
Personnel  Management.  The  alliance 
will  focus  on  improving  education  for  tele¬ 
work  managers  and  employees. 

■  A  recent  2Wire  poll  of  400  broadband 
subscribers  found  that  56%  plan  to  check 
e-mail  every  day  on  vacation,  69%  would 
work  from  home  if  they  could  get  wireless 


access  from  the  yard  and  55%  consider 
checking  e-mail  the  most  important  part 
of  their  morning,  ahead  of  breakfast  and 
reading  the  paper.  When  asked  how  they 
feel  when  'Net  access  is  disrupted,  60% 
said  they  feel  agitated,  30%  bored  and 
only  2%  reported  relief. 

■  Linksys  recently  introduced  two  de¬ 


vices  for  smaller  offices.  An  802.1 1g  Eth¬ 
ernet  bridge  with  a  five-port  switch  cor: 
nects  a  small  workgroup  network  to  a 
larger  one  and  adds  wired  devices  to  a 
wireless  network.  A  four-port  VPN  router 
supports  30  VPN  endpoints,  and  includes 
a  SPI  Dynamics'  firewall  and  dua;  Into  net 
ports  for  load  balancing  and  redundancy. 
Each  costs  $199. 
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The  ultra  reliable  IBM  eServer  xSeries  365  system  -  with  powerful  Intel®  Xeon™  processors  -  can  make  your  work,  and 
IT  selection  process,  easier.  With  three  levels  of  memory  protection  and  a  comprehensive  monitoring  of  key  components,  it’s 
all  about  uptime.  So  you  get  outstanding  reliability  when  running  mission-critical  ERP,  collaboration  and  database  applications. 
The  works.  Management  is  easier,  too.  You  can  have  around-the-clock  remote  access,  on  demand.  And  system  status  can  be 
available  even  when  powered  off.  For  more  on  highly  available,  manageable  xSeries  servers,  go  to  ibm.com/eserver/advantage 


5  reasons  more  and  more  businesses  are  turning  to  IBM  eServer'"  xSeries1,  systems  with  Intel  Xeon  processors. 


Scale  1-16  way  with  select 

IBM  Director  systems 

Linux-ready  through 

Mainframe-inspired 

24/7/365  optional  onsite 

models.  Pay  as  you  grow. 

management. 

the  entire  line. 

technologies. 

hardware  support.1 

(e)  server’ 


The  easy  choice.  Dependability. 
IBM  eServer  xSeries  365  system. 


Additional  charges  apply  Standard  support  includes  next-business-day  response  in  some  countries.  IBM.  the  e-business  logo,  eServer,  the  eServer  logo  and  xSeries  are  trademarks  or  registered  trademarks  o!  International 
Business  Machines  Corporation  in  the  United  States  and/or  other  countnes.  Intel,  Intel  Inside,  the  Intel  Inside  logo  and  Intel  Xeon  are  trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsidiaries  in  the 
United  States  and  other  countries.  Other  company,  product  and  service  names  may  be  trademarks  or  service  marks  of  others  ©2004  IBM  Corporation.  All  rights  reserved. 
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»  The  next  viral  intruder  lurks  ...  somewhere.  But  a  Juniper  network  is  already  built 
to  withstand  the  attack.  Juniper  Networks  delivers  the  industry’s  most  secure  and 
sophisticated  solutions  —  making  your  network  impenetrable  without  sacrificing 
speed  or  reliability.  So  have  cake  and  eat  it,  too.  That’s  what  it  means  to  Juniper  your  net. 


Jumper  Networks  is  proud  to  transform  security  in  networking  through  our  addition  of  NetScreen  Technologies: 

Deep  Inspection  hirewatl  I  IPSec  and  SSL  VPN  I  Intrusion  Detection  and  Prevention  I  Antivirus  I  Central  Management 


junipernetworks.com 
888-JUNIPER  (888-586-4737) 


©2004  Juniper  Networks 


www.nwfusion.com 
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SHAPING  YOUR  NETWORK 


802.1 1  h  helps  WLANs  share  spectrum 


HOW  IT  WORKS 


802.1 1h 


The  802.11h  standard  defines  mechanisms  to  ensure 
802.11a  wireless  networks  operate  according  to 
regulatory  requirements  for  the  5-GHz  spectrum.  One 
such  mechanism  is  dynamic  frequency  selection,  which 
lets  an  access  point  and  associated  WLAN  stations 
dynamically  switch  to  another  channel  to  avoid 
interfering  with  military  radar  or  other  WLAN  networks. 


fj™ — }) 

Access  point 


O  An  access  point  announces  that  spectrum  management  is  required  in  the  frames  that  advertise 
the  existence  of  the  WLAN. 

©  The  WLAN  station  includes  the  operational  channels  it  supports  in  the  frames  it  sends  to  request 
an  association  with  the  access  point 

©  The  access  point  responds  with  a  message  completing  the  association  process  of  the  WLAN 
station  and  the  access  point. 

O  After  determining  that  it  is  necessary  to  change  the  operating  channel  for  the  WLAN  segment, 
the  access  point  sends  a  message  to  all  associated  WLAN  stations  announcing  that  the  WLAN 
segment  will  switch  to  a  new  channel,  the  time  when  the  change  will  take  place,  and  the  new 
channel. 

©  At  the  designated  time,  the  WLAN  station  switches  its  channel  of  operations  to  the  new  channel. 


■  BY  MICHAEL  SEE 

Because  802.1  la  wireless  networks  oper¬ 
ate  in  the  !>GHz  radio  frequency  band  and 
support  as  many  as  24  non-overlapping 
channels,  they  are  less  susceptible  to  inter¬ 
ference  than  their  802.1  lb/g  counterparts. 
However,  regulatory  requirements  govern¬ 
ing  the  use  of  the  5-GHz  band  vary  from 
country  to  country,  hampering  802.11a 
deployment. 

In  response,  the  International  Telecom¬ 
munication  Union  recommended  a  har¬ 
monized  set  of  rules  for  WLANs  to  share 
the  5-GHz  spectrum  with  primary-use 
devices  such  as  military  radar  systems. 
Approved  in  September,  the  IEEE  802.1  lh 
standard  defines  mechanisms  that  802.11a 
WLAN  devices  can  use  to  comply  with  the 
ITU  recommendations.  These  mechanisms 
are  dynamic  frequency  selection  (DFS) 
and  transmit  power  control  (TPC).WLAN 
products  supporting  802.1  lh  will  be  avail¬ 
able  in  the  second  half  of  this  year. 

DFS  detects  other  devices  using  the  same 
radio  channel,  and  it  switches  WLAN  oper¬ 
ation  to  another  channel  if  necessary  DFS 
is  responsible  for  avoiding  interference 
with  other  devices,  such  as  radar  systems 
and  other  WLAN  segments,  and  for  uni¬ 
form  utilization  of  channels. 

An  access  point  specifies  that  it  uses  DFS 
in  the  frames  WLAN  stations  use  to  find 
access  points.  When  a  WLAN  station  asso¬ 
ciates  or  re-associates  with  an  access  point, 
the  station  reports  a  list  of  channels  that  it 
can  support.  When  it’s  necessary  to  switch 
to  a  new  channel,  the  access  point  uses  this 
data  to  determine  the  best  channel. 

The  access  point  initiates  a  channel 
switch  by  sending  a  frame  to  all  stations 
associated  with  the  access  point  that  iden¬ 


tifies  the  new  channel  number,  the  length 
of  time  until  the  channel  switch  takes 
effect,  and  whether  or  not  transmission  is 
allowed  before  the  channel  switch. Stations 
that  receive  the  channel  switch  informa¬ 
tion  from  the  access  point  change  to  the 
new  channel  after  the  elapsed  time. 

An  access  point  measures  channel  activ¬ 
ity  to  determine  if  there  is  other  radio  traf¬ 
fic  in  the  channels  being  used  for  a  WLAN. 
The  access  point  sends  a  measurement 


request  to  a  station  or  group  of  stations 
identifying  the  channel  where  activity  is  to 
be  measured,  the  start  time  of  the  mea¬ 
surement  and  the  duration  of  the  measure¬ 
ment.  The  station  performs  the  requested 
measurement  of  channel  activity  and  gen¬ 
erates  a  report  to  the  access  point. 

TPC  is  intended  to  reduce  interference 
from  WLANs  to  satellite  services  by  reduc¬ 
ing  the  radio  transmit  power  WLAN 
devices  use.  TPC  also  can  be  used  to  man¬ 


age  the  power  consumption  of  wireless 
devices  and  the  range  between  access 
points  and  wireless  devices. 

An  access  point  specifies  TCP  support  in 
the  frames  it  generates  to  WLAN  stations. 
These  frames  also  specify  the  maximum 
transmit  power  allowed  in  the  WLAN  and 
the  transmit  power  the  access  point  cur¬ 
rently  is  using. The  transmit  power  used  by 
stations  associated  with  an  access  point 
cannot  exceed  the  maximum  limit  that  the 
access  point  sets. 

When  a  WLAN  station  associates  with  an 
access  point,  the  station  indicates  its  trans¬ 
mit  power  capability. The  access  point  uses 
this  data  about  the  stations  associated  with 
it  to  determine  the  maximum  power  for 
the  WLAN  segment.  This  means  the  radio 
power  in  a  WLAN  segment  can  be  adjusted 
to  reduce  interference  with  other  devices 
while  still  maintaining  sufficient  link  mar¬ 
gin  for  operation  of  the  wireless  network. 

Frames  also  are  sent  between  the  access 
point  and  the  stations  to  monitor  the  signal 
strength  of  the  wireless  network.The  access 
point  can  dynamically  adjust  the  radio  sig¬ 
nal  strength,  if  necessary  to  maintain  wire¬ 
less  communications. 

The  original  motivation  for  the  DFS  and 
TPC  mechanisms  defined  in  802.1  lh  en¬ 
sure  a  standard  method  of  operation  under 
the  regulatory  requirements  governing  the 
5-GHz  band,  which  will  spur  deployment  of 
802. 1 1  a  wireless  networks. Along  with  meet¬ 
ing  regulatory  requirements,  DFS  and  TPC 
can  be  used  to  improve  the  management, 
deployment  and  operation  of  WLANs. 

See  is  CTO  of  the  network  infrastructure 
business  unit  of  Alcatel's  Enterprise  Solu¬ 
tions  Division.  He  can  be  reached  at 
michael.see@alcatel.  com. 


Dr.  Internet  By  Steve  Blass 

is  it  true  that  the  GNU  Compiler  Collection  (GCC) 
includes  a  compiler  for  Java  that  can  produce 
Windows  executable  binary  programs  from  Java 
source  code? 

The  GCC's  GNU  Compiler  for  Java  (GCJ)  can  cre¬ 
ate  binary  executables  from  Java  source  code, 
and  these  can  then  be  run  on  systems  that  don't 
have  a  Java  Runtime  Environment.  The  Abstract 
Window  Toolkit  and  Swing  are  not  completely 


implemented  but  it  is  still  possible  to  create  pro¬ 
grams  with  GUIs  using  IBM's  Simple  Widget  Toolkit 
(SWT),  which  is  part  of  the  Eclipse  platform.  To 
get  started  with  GCJ  on  Windows,  download  the 
GCC/GCJ  3.4  package  (see  www.nwfusion.com, 
DocFinder:  2940  for  details).  Download  the  GCC/ 
GCJ  3.4  bundle  rather  than  the  3.5  bundle,  as  the 
3.5  bundle  does  not  have  the  SWT  dll  required  to 
run  applications.  To  build  the  set  of  examples 
included  with  the  GCC/GCJ  bundle  you  also  will 


want  to  download  the  file  MSYS-I.O.IO.exe  from 
the  download  section  of  www.mingw.org  so  that 
you  can  use  Make  to  automatically  build  the  pro¬ 
grams.  Information  about  using  GCJ  with  Eclipse 
and  Ant  rather  than  Make  is  available  at  Doc- 
Finder:  2941. 

Blass  is  a  network  architect  at  Change@Work  in 
Houston.  He  can  be  reached  at  dr.  in  tone  t@ 
changeatwork.  com. 
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GEARHEAD 
INSIDE  THE 
NETWORK 
MAGHINE 

Mark 

Gibbs 


This  week,  a  summer  distraction  and 
complete  geek-out  as  we  network  our 
garden  irrigation  system. 

The  problem  is  that  standard  irrigation 
timers  just  do  not  cut  it  when  you  have  a 
large  garden.  We  have  such  a  garden  with 
29  separate  watering  zones,  and  we  wound 
up  with  two  clusters  of  timers  in  two  build¬ 
ings  separated  by  some  200  feet,  one  clus¬ 
ter  in  a  barn  and  the  other  in  a  basement. 

This  might  not  sound  too  problematic 
until  you  notice  in  passing  that  this  flower 
bed  needs  more  water  or  that  shrub  looks  a 
little  dry,  or  rain  makes  it  necessary  to  skip 
all  watering  for  24  hours,  or  a  high  wind 
makes  it  pointless  to  have  sprinklers  on  at 
all. 

Any  of  these  critical  horticultural  situa¬ 
tions  can  turn  into  an  inconvenient  trek  to 
the  bam  or  basement  only  to  find  that  the 
timer  you  want  is  in  the  other  location. 
Then  when  you  do  find  the  right  one  you 
have  to  fool  with  a  horrible  user  interface. 
The  obvious  solution  is  networking. 


Networking  your  garden 


We  looked  around  for  remote  control¬ 
lable  irrigation  systems,  and  not  wanting  to 
spend  thousands  of  dollars  on  commercial 
products  designed  for  watering  hundreds 
of  acres  we  concluded  that  an  X-10  prod¬ 
uct  might  help. 

X-10  is  a  simple,  low-speed,  power-line 
network  technology  that  Gearhead  cov¬ 
ered  a  few  years  ago  (www.nwfusion.com, 
DocFinders:  2934  and  2935).  While  it  is  not 
the  most  robust  or  high-performance  net¬ 
work  offering  it  is  cost-effective  (cheap) 
and  adequate  for  this  kind  of  application. 

After  much  research,  we  also  settled  on  a 
neat  device  called  the  Rain8  from  WGL  & 
Associates  (see  details  at  DocFinder:2933). 
This  is  a  tiny  box  with  three  connectors: 
one  for  programming;  one  for  connecting 
to  a  separate  power-line  interface  module 
that  converts  the  X-10  signals  into  a  custom 
serial  interface  for  the  Rain8;  and  a  termi¬ 
nal  block  with  eight  connections  (one  for 
valves  or  “zone,”  one  common  for  all  valves 
and  two  for  the  12-volt  power  supply). 

WGL  provides  a  utility  for  programming 
the  Rain8  that  lets  you  set  the  X-10  codes 
and  maximum  run  time  for  each  zone  and 
two  optional  codes  that  trigger  running  the 
zones  in  sequence  with  a  separate  list  of 
zone  run  times.  There  are  two  further 
optional  codes:  one  that  disables  the  unit 


and  another  that  skips  the  next  sequenced 
run  (in  effect, a  24-hour  delay  function). 

We  found  a  box  to  house  the  equipment 
(three  Rain8s, power  supply  and  power-line 
interface),  wired  it  all  up  (see  DocFinder: 
2937  for  some  pictures  and  links  to  all  of 
the  components),  and  tested  it  by  replac¬ 
ing  the  timers  in  the  barn. 

With  a  stand-alone  X-10  controller 
plugged  in  next  to  the  unit,  there  were  no 
problems.  But  from  the  computer  room 
being  controlled  by  a  computer  through  a 
power-line  interface,  nothing  worked. 

We  assumed  the  problem  was  signal  de¬ 
gradation  because  of  the  power  circuit 
being  about  200  feet  long.  But  after  buy¬ 
ing  a  new  power-line  interface  for  the 
Rain8  setup  and  trying  the  same  on  the 
computer,  installing  an  X-10  signal  boost¬ 
er  and  an  X-10  phase  coupler,  and  after 
much  fooling  around,  we  still  couldn’t  get 
it  to  work. 

It  turned  out  that  simply  moving  the  com¬ 
puters  power-line  interface  from  a  socket 
powering  several  computers  to  another  a 
dozen  feet  away  with  nothing  plugged  into 
it  fixed  the  problem.  Such  are  the  curiosi¬ 
ties  of  the  X-10. 

So  what  software  to  drive  the  Rain8 
setup?  The  second  Gearhead  story  we 
mentioned  above  covered  the  HomeSeer 


www.nwfusion.com 


program,  and  after  much  research,  we  con¬ 
cluded  that  there  is  nothing  better.  There 
are  some  interesting  alternatives,  such  as 
the  freeware  MisterHouse  (DocFinder: 
2938),  but  in  terms  of  ease  of  use  and 
power,  HomeSeer  was  the  hands-down 
winner. 

HomeSeer  really  is  a  fine  piece  of  engi¬ 
neering  with  a  good  interface  and  good 
documentation,  and  can  run  scripts  writ¬ 
ten  in  VBScript,  JavaScript  and  Perl, 
which  has  led  to  a  large  collection  of  free 
and  commercial  add-ons.  HomeSeer 
offers  an  optional  telephone  interface 
that  provides  a  multi-box  voice  mail  sys¬ 
tem,  and  with  the  right  hardware 
HomeSeer  provides  a  Web  interface  so 
any  computer  in  the  house  can  trigger  or 
change  the  irrigation  system.  We  are 
modifying  it  so  we  can  walk  around  the 
grounds  triggering  zones  using  a  wireless 
connection  from  a  PDA. 

One  Rain8  sprinkler  controller,  24-volt  AC 
300ma  transformer,  RS232  cable,  data  cable 
and  a  PSC05  power-line  interface  costs 
about  $100;  additional  Rain8s  cost  about 
$80.  HomeSeer  costs  about  $150. 

Next  week,  back  to  business.  Meanwhile, 
what  have  you  networked?  Tell  gearhead 
@gibbs.com. 


CoolToo 

Quick  takes 
on  high-tech  toys 

By  Keith  Shaw 


The  scoop:  Pocket  Video  Recorder  AV420,  from  Archos, 
about  $550. 

What  it  does:  The  AV420  combines  the  features  of  a  dig¬ 
ital  audio  player  such  as  Apple’s  iPod,  video  recorder  fea¬ 
tures  such  as  theTiVo’s.and  a  large  handheld  hard  drive 
for  storing  digital  photos  and  other  files.  The  device 
comes  with  a  docking  station  that  lets  users  record  from 
any  video  source  (through  composite  audio/visual 
cables)  onto  the  AV420. 

Music  and  other  files  can  be  transferred  to  the  AV420 
through  a  USB  2.0  cable  from  a  PC  or  Macintosh.  You 
can  watch  videos  on  the  3.8-inch  color  LCD  screen,  or 
connect  via  the  docking  station  to  a  TV  and  watch 
them  on  a  larger  display. You  can  listen  to  music  via  the 
external  speaker,  or  connect  headphones  to  the  AV420. 
The  storage  capacity  is  impressive  —  the  version  we 
tested  had  20G  bytes  of  space,  which  translates  to  as 
many  as  80  hours  of  content.  A  larger,  lOOG-byte  ver¬ 
sion  also  is  available  (about  $800),  which  offers  up  to 
400  hours  of  content. 

An  optional  FM  radio  and  remote-control  accessory  let 
users  listen  to  FM  radio  broadcasts  and  record  songs 
directly  to  the  device. 

Why  it’s  cool:  The  AV420  truly  becomes  a  handheld 
digital  entertainment  center  when  you  combine  the 
video  player,  TV  (or  other  video  source)  recorder,  color 
screen  and  photo-viewing  applications  to  the  standard 
digital  audio  player. 


Move  over,  iPod! 


We’ve  seen  the  evolution  of  products  from  Archos,  and 
they’ve  generally  impressed  us  over  the  years.  While  Apple 
gets  raves  for  its  iPod,  Archos  continues  to  come  out  with 
products  that  impress. 

The  AV420’s  interface  is  super-intuitive.  Navigating 
around  the  menus  is  easy  with  its  five-way  navigation 
buttons.  File  folders  containing  sample  music,  video  and 
photos  come  pre-installed,  so  when  you  attach  it  to  a 
computer,  you  easily  can  transfer  digital  files  into  the 
folders. 

The  addition  of  the  color  screen  and  video  player  does 
drain  the  battery;  we  were  able  to  get  about  3  hours  of 
active  video  playing  before  the  battery  died;  you  should 
have  enough  time  to  watch  a  movie  or  listen  to  songs  on 
a  plane  ride,  but  make  sure  you  bring  the  charger 
along  so  the  video  player  is  powered  up  for  the 
return  trip. 

The  hardest  part  of  connecting  the  docking  sta¬ 
tion  to  our  TV  for  video  recording  was  untangling 
all  the  wires  attached  to  the  station.  Once  con¬ 
nected,  recording  a  video  segment  involved 
selecting  the  video  recording  application  and 
choosing  an  option  to  record.  If  you  want  to 
record  a  TV  show  that  isn’t  on  yet,  you  can  set  up 
the  recording  by  inputting  the  time, show  duration 
and  channel. 

If  you  need  to  have  the  system  change  the  chan¬ 
nel,  the  AV420  includes  an  infrared  cable  that  con¬ 
nects  to  the  docking  station,  which  you  connect  to 
your  cable  box. 

Using  the  recording  applica-  _  ..  , 

non  reminded  us  of  the  early  mapks  as  a%andh^|d 

days  of  the  VCR,  when  you  digital  entertainment 

needed  to  remember  when  center. 


certain  shows  were  on  and  on  which  channel.  If  you’ve 
been  spoiled  by  TiVo  and  other  personal  video  re¬ 
corders,  that  let  you  pick  a  show  from  the  guide  and  click 
one  button, you  might  be  put  off  by  having  to  input  data 
manually. 

Fortunately  there  are  enough  TV  listings  sites  on  the 
Internet  that  will  tell  you  when  shows  are  on.  We  hope  a 
future  software  upgrade  will  let  you  connect  the  AV420 
to  a  PC  and  download  your  TV  listings  directly  to  the 
device,  but  for  now  we’re  left  with  the  manual  method. 

Grade:  ★★★★■*  (out  of  five) 

Shaw  can  be  reached  at  kshaw@nww.com. 
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Face-off 


Is  graceful  restart  the  best 
way  to  ensure  IP  reliability? 


Two  industry  experts  debate  the  merits  of  graceful  restart  vs.  nonstop  routing. 


Yes,  Matt  Kolon,  Juniper 


here  are  many  facets  to  the  problem  of  giving  an  IP  network  greater  than 
99.999%  availability,  including  those  related  to  network  design, hardware  redun¬ 
dancy  and  technology  choices.  But  accepting  that  router  control  plane  failures 
will  occur  occasionally,  and  providing  a  comprehensive  and  forthright  way  to 
handle  these  events,  is  a  fundamental  step  toward  five-nines  availability 
Graceful  restart  of  router  control  protocols  is  the  best  way  to  accomplish  this. 

The  exact  mechanisms  by  which  graceful  restart  functions  are  protocol-specific  and, 
therefore,  defined  in  separate  IETF  documents  for  each  of  the  routing  and  control  proto¬ 
cols  in  question.The  general  idea  of  their  operation,  however,  is  similar:  allow  a  controlled 
pause  in  the  control  plane  of  a  router  during  which  traffic  forwarding  continues,  with  no 
need  to  cause  a  “convergence  event”  that  puts  the  network  as  a  whole  into  an  unstable 
state.  This  is  possible  because  modern  router  designs  separate  the  functions  of  routing 
(the  control  flow  of  destination  information)  and  forwarding  (the  actual  data  flow  of 
packets  through  the  router).  While  it  used  to  be  true  that  loss  of  a  control  connection 
meant  that  forwarding  had  stopped,  the  separation  of  routing  and  forwarding  functions 
allows  adjustments  in,  changes  to  or  even  restarts  of  the  router  control  plane  during  nor¬ 
mal  operation  —  leaving  the  flow  of  customer  traffic  unaffected. 

Graceful  restart  lets  a  router  that  might  need  to  drop  its  control  plane  connections  to  its 
routing  peers  for  a  short  time  alert  those  peers  of  this  capability  proactively  at  the  time  of 
initial  session  establishment.Graceful  restart  also  provides  for  standard  protocol  action  to 
resynchronize  the  control  connections  or  escalate  the  situation  to  a  general  forwarding 
failure  if  hardware  or  other  failures  require  it. 

Graceful  restart  provides  several  clear  advantages  over  proprietary  methods  that  seek  to 
provide  router  availability. These  include: 

•  Simplicity  The  mechanisms  by  which  graceful  restart  operates  are  easily  understood 
by  anyone  with  a  knowledge  of  routing  protocols. 

•  Vendor-neutrality.  Graceful  restart  is  defined  in  IETF  documents  that  any  vendor  can 
follow  and  implement,  and  thereby  be  assured  of  interoperability 

•  Transparency  Graceful  restart  does  not  require  proprietary  changes  to  protocol  oper¬ 
ation,  and  control  plane  failures  can  be  modeled  in  deterministic  fashion,  with  a 

clear  sense  of  what  will  or  will  not  happen  in  a  given  failure  scenario. 

•  Addressing  of  software  failures.  When  a  software  bug  causes  a  router  fail 
ure, graceful  restart  mechanisms  let  the  router“start  fresh’’with  a  new  instance 
of  the  routing  tables  and  the  configuration  state  that  derives  them. 

Graceful  restart  provides  a  comprehensive,  vendor-neutral  and  transparent 
mechanism  for  handling  control  plane  issues. Service  providers  and  vendors  that 
seek  to  serve  them  are  all  best  served  by  implementing  it,  because  letting  failures 
be  handled  without  interrupting  forwarding  is  a  pragmatic  step 
toward  a  truly  nonstop  control  plane. 


No,  Ru  Wadasinghe,  Nortel 


Kolon  is  a  senior  technical  consultant  at  Juniper .  He  can  be  reached 
at  matt@juniper.net. 


More  online! 

Log  on  to  Network  World  Fusion  to  voice  your  opinion 
Face-off  authors  Matt  Kolon  and  Ru  Wadasinghe  will 
add  their  thoughts  to  the  discussion. 
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rotocol  extensions  are  being  developed  to  increase  IP  reliability.  But  by  them¬ 
selves,  they  are  insufficient  to  fulfill  the  expectation  for  five-nines  IP  nodes  that 
can  support  mission-critical,  real-time  voice,  video  and  data  in  addition  to 
lower-priority  traffic.  Devices  entering  this  converged  market  must  provide 
cost-effective  reliability  for  many  deployment  scenarios  —  especially  at  the 
network  edge.  For  non-redundant  configurations  supporting  consumer-grade  services  or 
multi-vendor  environments  where  some  products  don’t  support  non-stop  routing,  grace¬ 
ful  restart  can  help  improve  reliability  However,  to  provide  true  five-nines  reliability  non¬ 
stop  routing  is  the  best  solution. 

With  graceful  restart, each  node  depends  upon  all  its  neighbors  running  compatible  pro¬ 
tocol  extensions.This  becomes  even  more  problematic  if  the  neighbors  are  part  of  differ¬ 
ent  autonomous  systems. 

In  addition,  the  IETF’s  graceful  restart  drafts  are  still  not  stable.  Once  stability  is  reached 
and  vendors  support  the  same  drafts,  their  implementations  might  differ,  resulting  in 
costly  and  timeconsuming  testing  and  provisioning. 

Despite  safety  mechanisms  embedded  in  graceful  restart,  it  is  still  susceptible  to  black 
holes  and  forwarding  loops  occurring  because  it  operates  on  the  premise  of  forwarding 
traffic  without  the  control  plane  being  operational. 

Nonstop  routing  is  a  selfcontained  nodal  capability  that  does  not  require  protocol  ex¬ 
tensions  and  thus  does  not  suffer  from  interoperability  issues.  It  lets  the  node  recover  by 
itself  without  imposing  requirements  on  other  nodes,  simplifying  network  engineering, 
testing  and  operations  while  reducing  complexity  and  costs. 

Non-stop  routing  provides  for  much  faster  recovery  and  convergence  times  because  the 
routing  protocols  do  not  fail  during  control  card  switchovers. This  greatly  minimizes  the 
time  stale  routes  are  in  the  forwarding  table  and  the  amount  of  control  traffic,  producing 
a  more  stable  network  topology 

Potential  scalability  and  mirrored  bug  concerns  with  nonstop  routing  can  be  dealt  with 
by  processing  and  parsing  only  appropriate  state  information  to  the  back-up  processor, 
removing  lock-step  redundancy  so  that  the  specific  combination  of  software  bug  and 
state  are  not  replicated. 

Even  in  the  event  of  a  systematic  failure,  nonstop  routing  is  at  least  equivalent  to 
graceful  restart.  If  continuous  corrupted  control  packets  cause  a  failure,  non¬ 
stop  routing  and  graceful  restart  would  have  the  same  effect  —  except  that 
nonstop  routing  would  not  have  to  wait  for  any  potential  timeout  period 
before  re-routing  around  the  failing  router. 

Graceful  restart  is  good  for  some  deployment  scenarios  but  insufficient  for 
many  Nonstop  routing  doesn’t  require  complicated  interoperability  that  creates 
higher  operations  costs  or  risk  compounding  outages  by  acting  inap¬ 
propriately  to  legitimate  failures  beyond  the  control  plane. 


Wadasinghe  is  senior  product  manager,  multiservice  edge,  at 
Nortel.  He  can  be  reached  at  wadasin@nortelnetworhs.com. 
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OH  TECHNOLOGY 

John  Dix 

Security 
vendors  peer 

There  are  hundreds  of  vendors  in  the  security  mar¬ 
ket,  and  the  bulk  of  them  are  focused  on  the  edge. 

But  some  of  the  newer  entrants  are  looking  inside 
because  they  recognize  that  1)  despite  all  of  our  perimeter 
defenses,  bogeys  still  get  through,  and  2)  compliance, 
acceptable  use  and  other  new  requirements  demand  more 
stringent  controls. 

Lancope  is  targeting  the  first  concern,  and  Reconnex, 
which  we  will  look  at  next  week,  is  focused  on  the  latter. 

Lancope  offers  an  appliance  called  StealthWatch  that 
constantly  compares  network  activity  against  a  normal 
baseline.That  baseline  is  achieved  by  placing  sensor  appli¬ 
ances  at  critical  points  in  the  network  —  for  example,  at 
Web  servers, VPN  access  points  and  core  routers  —  and 
starting  an  auto-learn  process. 

Once  the  baseline  has  been  achieved,  the  watching  be¬ 
gins, says  Chris  Hovis,vice  president  of  marketing  and  busi¬ 
ness  development.  Each  packet  that  goes  by  is  collected, 
organized  into  flows,  and  then  analyzed  and  mapped  to 
policies. 

Policies,  Hovis  says,  can  address  everything  from  who  can 
talk  to  whom,  what  ports  and  services  can  be  accessed, 
and  minimum  and  maximum  traffic  thresholds.  Customers 
then  use  StealthWatch  to  establish  a  behavior  concern 
index  for  each  host,  with  things  like  syn  floods  and  scan¬ 
ning  activity  ranking  high. 

When  nefarious  activity  is  noticed,  StealthWatch  can 
sound  an  alarm, automatically  mitigate  the  situation  on  a 
zone-by-zone  basis  (it  is  integrated  with  Cisco  routers,  Cis¬ 
co’s  P1X  firewall  and  Check  Point  firewalls),  or  suggest  a 
course  of  action  that  must  be  approved  by  an  administrator. 

On  the  face  of  it,  the  StealthWatch  approach  makes  sense 
because  studies  have  shown  that  up  to  50%  of  todays  secu¬ 
rity  events  go  undetected  by  signature-based  systems  such 
as  firewalls. 

The  problem  with  signature-based  systems,  Hovis  says,  is 
you’re  using  prior  knowledge  to  look  for  bad  stuff  that  is 
always  changing.“With  StealthWatch,  we  are  constantly 
aware  of  what  is  happening  vis-a-vis  a  baseline  of  what 
should  be  happening. 

“Customers  are  saying, 'I’m  not  going  to  prevent  every¬ 
thing,  but  when  stuff  does  happen,!  want  to  quarantine  it 
to  as  small  a  part  of  the  net  as  possible.’ When  someone 
breaks  in,  we  lock  all  the  doors  and  windows  in  that  room,” 

he  says. 

Prices  for  StealthWatch  start  at  about  $20,000.The  com¬ 
pany,  which  has  65  employees  and  75  customers,  is  private¬ 
ly  funded  and  just  raised  $12.5  million  in  the  first  quarter. 
Next  week,  a  look  at  Reconnex’s  approach  to  security 

—  John  Dix 
Editor  in  chief 
jdix@nww.com 


Worrisome  thought 

Regarding  Mark  Gibbs’  Backspin  column  “Worry 
worry  worry  worry”  (www.nwfusion.com,  DocFinder: 
2924):  Why  in  the  name  of  sanity  would  anyone 
build  a  security  or  financial  product  and  base  it  on 
Internet  Explorer,  the  world’s  most  unsecure 
browser?  Because  doing  so  is  easy  and  cheap?  Or 
maybe  because  they  can  then  do  things  on  the 
user’s  computer  that  the  user  doesn’t  know  about 
and/or  wouldn’t  approve  of? 

Anyone  that  builds  into  their  operating  system  a 
program  that  can  install,  run,  delete,  copy  rename, 
send  and  receive  files  on  the  local  computer,  and 
then  has  that  same  program  able  to  browse  about 
on  the  public  network, should  be  shot.Those  that  are 
dumb  enough  to  use  it  should  be  whacked  over  the 
head  with  a  wet  noodle. 

Dan  Renner 
President 
Los  Angeles  Computerhelp 
Glendale,  Calif. 

Outgoogling  Google 

Regarding  Dave  Kearns’  column  “Microsoft  over 
Google?  Keep  searching”  (DocFinder:  2925):  Micro¬ 
soft  has,  for  the  past  several  years,  established  a  pro¬ 
gram  the  company  calls  “eating  our  own  dogfood” 
—  using  its  own  software  internally,  before  releasing 
it  to  the  public.  This  practice  has  made  Microsoft’s 
products  considerably  better  than  they  otherwise 
would  have  been.  Currently  Microsoft  is  “dog  food- 
ing”  search  technology  internally  that  smokes 
Google.To  diminish  Microsoft’s  capability  to  accom¬ 
plish  market  dominance  when  the  company  sets  its 
mind  to  it  is  to  forget  every  market  in  which 
Microsoft  plays. 

E-mail  letters  to  jdix@nww.com  or  send  them  to  John  Dix,  editor  in 
chief.  Network  World.  1 1 8  Turnpike  Road,  Southborough,  MA  01772. 
Please  include  phone  number  and  address  for  verification. 


Also, comparing  Windows  file  system  search  to  Web 
search  is  apples  to  oranges.  When  Longhorn  is 
released,  this  won’t  be  the  case,  but  as  Kearns  says, 
that  will  be  a  while.  Until  we  have  WinFS,  file  system 
searches  will  continue  to  be  terrible.  On  the  Web 
front, however, I  recently  attended  a  meeting  at  which 
Microsoft’s  search  product  manager  estimated  we’d 
see  Microsoft’s  victory  over  Google  in  public  release 
within  nine  to  12  months.  Judging  by  Google’s  recent 
attempts  to  diversify  its  product  and  services,  I’d  say 
Google  knows  about  Microsoft’s  timetable  as  well. 

Brian  Tinkler 
Vice  president,  business  development 
Serlio  Software 
Milwaukee 

Kearns  replies:  If  Microsoft  introduces  a  faster  search 
engine,  I'll  be  one  of  the  first  to  sing  its  praises.  But 
the  evidence  I’ve  seen  says  Microsoft  can 't  do  it.  Still, 
I'll  be  happy  to  be  proven  wrong. 

Foiling  DidTheyReadlt 

Regarding  Mark  Gibbs’  Gearhead  column  “How 
DidTheyReadlt  does  it”  (DocFinder:  2926):  As  an 
email  administrator  for  a  midsize  government  orga¬ 
nization,!  don’t  welcome  the  idea  of  a  service  such 
as  DidTheyReadIt.com.  At  first,  I  thought  of  several 
ways  to  prevent  our  proxy  server  from  allowing 
access  to  didtheyreadit.com  (all  browsers  here  must 
go  through  a  proxy  to  reach  the  Web;  thus,  while 
being  rendered,  the  HTML  messages  also  are  subject 
to  the  proxy’s  rules).  However,  I  could  see  some 
holes  in  that  approach. Then  a  colleague  said, “Why 
not  simply  put  didtheyreadit.com  in  your  DNS, point¬ 
ing  at  a  bogus  address?” 

Brilliant!  If  the  image  can’t  be  resolved  to  the 
server  holding  it,  tracking  doesn’t  work. 

Jim  Michael 
IS  manager 
City  of  Chesterfield,  Mo. 


4^7oIP  is  definitely  a  technology  that’s  pi aces... 

just  looK  at  the  Nrolume  of  spam  it  s  starting  to  attract... 99 
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STRATEGY  SESSION 

Jeff  Kaplan 

The  cancellation  of  this  year’s  Comdex 
show,  along  with  the  downsizing  of  the 
NetWorld+lnterop  conference, is  another 
nail  in  the  coffin  of  IT  mega  trade  shows. 
Many  view  the  cancellation  as  inevitable, 
given  the  cataclysmic  effects  of  Sept.  1 1 , 2001 , 
on  the  travel  industry  and  the  lingering  uncer¬ 
tainties  within  our  own  industry  that  have  kept  discretionary  spending 
down  on  both  the  enterprise  and  vendor  sides.  However,  the  real  cul¬ 
prit  might  be  an  older,  more  insidious  issue:  the  failure  of  vendors  to 
effectively  capitalize  on  industry  events  from  a  marketing  perspective. 

The  original  premise  of  the  trade  show  business  was  to  create  a  meet¬ 
ing  place  for  vendors  and  customers,  where  customers  could  learn 
about  the  latest  technology  trends, see  the  latest  products  and  interact 
with  the  leading  vendors.  Over  time,  shows  became  more  like  bazaars, 
with  vendors  handing  out  T-shirts  and  trinkets  to  compete  for  attention 
rather  than  promoting  their  products’  business  benefits. 

Now  that  focused  events  and  the  Internet  have  become  convenient 
and  effective  alternatives  for  learning  about  technology  and  compar¬ 
ing  vendors  and  products,  few  people  are  shedding  a  tear  over  the 
demise  of  the  mega-conference.  But  a  surprising  number  of  vendors 
still  are  making  the  same  mistakes  that  led  them  to  believe  trade  shows 
were  an  ineffective  marketing  tool. 

First,  many  vendors  don’t  properly  identify  which  events  are  most 
likely  to  attract  their  target  buyers.  Nearly  every  smart  event  organizer 
will  claim  to  be  targeting  CXOs  or  IT  decision-makers.  But  few  vendors 
ask  for  more  specific  demographic  information  to  ensure  the  attendees 
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match  their  ideal  buyers. 

Second,  many  vendors  fail  to  create  an  integrated  plan  that  estab¬ 
lishes  key  marketing  themes  and  messages,  details  complementary 
marketing  campaigns  and  develops  marketing  material  that  can  be 
utilized  beyond  a  single  event. 

Third,  and  most  amazing,  many  vendors  fail  to  follow  up  on  the  leads 
they  generate  at  events.  How  many  of  the  companies  that  have  swiped 
your  card  at  a  trade  show  when  you  visited  their  booths  actually  have 
contacted  you  after  the  event? 

Given  their  dismal  track  record,  it’s  no  wonder  many  vendors  have 
given  up  on  traditional  trade  shows.  In  addition,  vendors’  marketing 
failures  as  conference  sponsors  have  caused  enterprise  decision-mak¬ 
ers  to  doubt  the  real  value  of  these  events. 

Customers  clearly  have  voted  against  bad  conference  marketing  tac¬ 
tics  by  staying  away  from  mega  trade  shows. They  now  are  looking  for 
more  focused  venues  —  online  and  in  person  —  where  they  can  get 
more  industry  insight  and  intimate  understanding  of  the  best  technol¬ 
ogy  strategies  and  products  to  meet  their  specific  business  objectives. 

Now  the  task  for  industry  marketers  is  tougher.  With  their  budgets 
razor  thin,  they  must  sort  through  myriad  marketing  alternatives  to 
determine  which  promotional  vehicles  —  industry  conferences,  cor¬ 
porate  events  or  Webcasts  —  can  attract  the  most  qualified  leads. 
Picking  the  right  venue  is  only  a  small  piece  of  the  puzzle. The  corner¬ 
stones  of  success  will  be  better  marketing  preparation  and  follow-up. 


Vendors’  market¬ 
ing  failures  as 
conference  spon¬ 
sors  have  caused 
enterprise  deci¬ 
sion-makers  to 
doubt  the  real 
value  of  these 
events. 


Kaplan  is  managing  director  of  THINKstrategies,  a  consultancy  in 
Wellesley,  Mass.  He  can  be  reached  at  jkaplan@thinkstrategies.com. 


REALITY  CHECK 

Thomas  Nolle 

AT&T  sells  its  wireless  business  to  (Sing¬ 
ular.  Qwest  sells  its  wireless  assets  to  Veri- 
zon.Sprint  says  wireless  is  a  big  part  of  its 
profits.  Wall  Street  analysts  are  forecasting  a 
shift  of  capital  expenditures  (capex)  from 
wireline  to  wireless.  Big  players  are  bailing  out 
of  wireless, but  other  players  are  happy  to  pick 
up  their  assets.  If  wireless  was  clearly  the  way  of  the  future,  everybody 
would  want  to  be  into  it.  Why  the  diverse  view  of  wireless  importance? 

To  begin  with,  wireless  voice  is  under  a  lot  of  price  pressure  because 
of  competition. To  make  traditional  celiular/PCS  wireless  service  prof¬ 
itable  in  the  near  term,  you’d  need  other  offerings  you  could  leverage 
in  service  bundles,  a  valuable  home  territory  to  exploit  and  a  credible 
national  name.  Qwest  probably  made  the  right  decision  based  on  these 
factors. The  old  US  West  territory  has  fewer  subscribers  than  the  other 
RBOC  regions  and  big  open  spaces  that  are  expensive  to  cover. 

Verizon  has  a  different  dynamic.  It’s  targeting  the  mobile  worker  who 
spends  time  on  the  East  Coast  but  also  occasionally  treks  out  to  Big  Sky 
country.  For  the  business  phone  user,  coverage  is  everything,  and 
Verizon  has  about  45%  of  the  big  enterprise  headquarters  locations  in 
its  home  territory. Verizon  can  milk  the  mobile  market  in  a  way  Qwest 
never  could.  The  big  RBOCs  can  justify  wireless  as  a  hedge  against 
losses  in  traditional  wireline  voice,  but  it’s  how  the  interexchange  car¬ 
riers  view  wireless  that  exposes  the  real  issues  for  the  future. 

MCI  has  yet  to  express  a  wireless  strategy,  and  AT&T  now  is  commit¬ 
ted  to  wholesaling. Sprint  has  the  most  interesting  wireless  vision.lt  has 
championed  the  picture  phone  and,  more  recently,  a  chance  to  shoot 
video  clips.  In  the  near  term,  this  plays  to  the  youth  market,  but  in  the 
long  term  Sprint’s  strategy  might  be  a  hedge  —  although  a  very  differ¬ 
ent  one  from  the  voice  hedge  the  RBOCs  see  for  wireless. 

Could  wireless  be  a  strategic  hedge  that  wireline  broadband  services 
can’t  be  made  immediately  profitable?  For  all  the  enthusiasm  about  the 
Internet,  it’s  yet  to  be  a  profit  center  for  a  major  carrier.  What  then  ere- 
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ates  the  profit  in  broadband?  Sprint  might  be  holding  a  place  for  itself 
in  broadband  wireless,  expecting  that  mobile  applications  for  broad¬ 
band  will  be,  like  voice,  more  profitable  than  their  wireline  equivalents. 
Instant  messaging  is  profitable  in  wireless  and  not  in  wireline.  Same 
with  picture-  or  video-mail  services.  Perhaps  Sprint  is  looking  beyond 
these  obvious  plays  —  which,  after  all,  weren’t  obvious  at  first. 

The  big  question  with  wireless  remains  whether  there  is  any  real 
application  beyond  voice.  If  not,  the  competitive  forces  that  have 
largely  destroyed  voice  profits  in  the  wireline  arena  eventually  also  will 
destroy  wireless  profits.  Most  of  the  current  wireless  capex  Wall  Street  is 
talking  about  is  directed  at  3G  broadband  applications.That  investment 
won’t  pay  off  if  consumers  only  want  to  exchange  Short  Message 
Service  messages  and  photos. 

The  answer  to  the  question  “What’s  next  after  voice?"  might  be  devel¬ 
oping  in  Europe.  T-Mobile,  working  with  Nortel,  is  deploying  a  cus¬ 
tomized  data  services  offering  over  wireless  that  will  be  trialed  in  the 
U.K.  and,  if  successful,  elsewhere.  While  the  deal  doesn’t  explain  what 
customized  data  services  will  be  offered,  it  indicates  that  carriers  and 
vendors  are  working  to  address  profit  sources  for  wireless  in  the  future. 

What  might  the  services  be?  For  the  enterprise  user,  access  to  corpo¬ 
rate  applications  is  clearly  a  mobile  service  option,  and  Web  services 
standards  could  help  enable  those  kinds  of  enterprise  applications  for 
wireless  data.  It’s  also  true  that  video  calling  is  actually  more  credible 
for  wireless  than  for  wireline  because  the  tiny  screen  makes  high-qual¬ 
ity  video  a  non-issue,  so  bandwidth  consumption  and  video  compres¬ 
sion  are  less  of  a  problem.  MP3  music  delivery  is  clearly  a  wireless  appli¬ 
cation,  as  is  interactive  multiplayer  gaming. 

It’s  unlikely  that  wireless  will  displace  DSL  and  cable  modems  as  the 
key  delivery  platform  for  broadband,  but  it’s  very  possible  it  will  have  a 
bigger  role  in  the  broadband  future  than  we  think. 


It’s  unlikely  that 
wireless  will 
displace  DSL  and 
cable  modems  as 
the  key  delivery 
platform  for 
broadband. 


Nolle  is  president  of  C1MI,  a  technology  assessment  firm  in  Voorhees, 
N.J.  He  can  be  reached  at  (856)  753-0004  or  tnolle@cimicorp.com. 
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MOSCONE  CENTER  •  SAN  FRANCISCO,  CA 


Where 

Meet 


LinuxWorld  Conference  &  Expo  is  the  #1  marketplace  for  companies 
that  sell,  market  or  promote  open  source  based  products,  services, 
applications  and  solutions.  Experiencing  astounding  growth,  it's 
the  largest  gathering  of  open  source  professionals  in  the  world. 

Attend  LinuxWorld  and... 

•  Evaluate  the  latest  Linux  and  open  source  products  and  solutions  showcased  by  the 
industry's  top  companies 

•  Discover  real  business  solutions  for  real  business  problems 

•  Network  with  peers  and  gain  valuable  insight  from  open  source  industry  leaders 

•  Participate  in  LinuxWorld's  world-class  educational  conference  and  realize  Linux  as  more 
than  an  operating  system,  but  as  a  world  of  applications 

•  Learn  how  Linux  can  save  your  company  time  and  money 


Register  Online  With  Priority  Code:  D3701 


CORNERSTONE  SPONSOR 


PLATINUM  SPONSORS 
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BY  ROBIN  GAREISS 


ustomers  think  highly 
of  the  reliability  and 
performance  of  car¬ 
rier  networks,  but 
aren’t  so  thrilled  with  the 
level  of  customer  ser¬ 
vice,  especially  when  it  comes  to  billing  and  manage¬ 
ment  tools.That  leaves  the  door  open  for  second-tier  ser¬ 
vice  providers  such  as  Broadwing,  Masergy  Commu¬ 
nications,  Sawis  Communications  and  XO  Com¬ 
munications,  according  to  a  Nemertes  Research  survey 
of  about  100  major  U.S.and  global  companies. 


Major  carriers  score  high 
on  network  performance, 
but  billing  woes  and  instal¬ 
lation  delays  open  the  door 
i  for  second-tier  providers. 

Service 
providers 
fall  short  on 
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While  companies  are  trying  to 
reduce  the  number  of  carriers  they 
deal  with  because  managing  those 
relationships  is  time-consuming,  26% 
of  respondents  say  they  still  use 
between  10  and  20  carriers.  In  some 
cases,  they  use  different  carriers  for 
different  services  to  leverage  better 
pricing  or  features;  in  others,  they 
must  use  multiple  carriers  to  cover 
all  their  locations. 

AT&T  is  the  most-frequently  used 
carrier,  followed  by  MCI,  Sprint  and 
Qwest,  according  to  survey  respon¬ 
dents.  Many  organizations  are  stick¬ 
ing  with  these  carriers  in  large  part 
because  of  concerns  about  the  finan¬ 
cial  viability  and  geographical  cover¬ 
age  of  the  newer  providers. 

But  other  customers  are  becoming 
increasingly  interested  in  the  second- 
tier  providers  who  offer  higher  band¬ 
width  for  lower  costs,  and  have  built 


their  networks  with  the  latest  tech¬ 
nology,  so  they  don’t  have  the  opera¬ 
tional  issues  larger  providers  have. 

What’s  more,  the  newer  players  go 
the  extra  mile  in  customer  service, 
some  IT  executives  say  “I’m  seeing 
second-tier  carriers  succeed  by  pro¬ 
viding  better  customer  service  than 
their  Tier-1  counterparts,"  says  John 
Fulmer,  senior  technical  director  of 
DigitalNet,a  consulting  firm  that  uses 
XO  and  and  uses  services  from  the 
major  carriers.  “I  don’t  think  cus¬ 
tomers  fear  using  a  Tier  2  as  much  as 
they  used  to.” 

The  survey  data  backs  up  the 
notion  that  customers  are  not 
pleased  with  the  customer  service 
they’re  getting  from  their  incumbent 
carriers. 

Respondents  rated  the  carriers  on 
the  following  factors:  network  relia¬ 
bility,  network  performance,  technol- 
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^►JOHN  FULMER  Senior  technical  director  of  Digital  Net.  ^ 


ogy  cost,  customer  service,  ease  of 
use,  management  tools,  service-level 
agreements  (SLA),  installation  time 
and  billing. 

On  a  l-to-5  scale,  where  1  is  unac¬ 
ceptable,  2  is  poor,  3  is  fair,  4  is  good 
and  5  is  excellent,  the  overall  scores 
for  reliability  and  network  perfor¬ 
mance  were  high.  Sprint  received  the 
top  score  for  reliability  at  4.38;  fol¬ 
lowed  closely  by  MCI  at  4. 18; Verizon, 
BellSouth  and  Qwest  at  4;  AT&T  at 
3.94;  and  SBC  at  3.75. 

Sprint  also  was  tops  in  network  per¬ 
formance  at  4.22,  followed  by  MCI  at 
4.09, Verizon  at  4  and  AT&T  at  3.90. 

But  when  it  came  to  a  customer  ser¬ 
vice  feature  like  billing,  the  scores 
were  far  lower  across  the  board. 
Sprint  again  was  first  at  3.38,  followed 
by  SBC  at  3.25,  BellSouth  and  MCI  at 
3,  AT&T  at  2.78,  Qwest  at  2.3  and 
Verizon  at  1.5. 

Billing  has  long  been  a  problem  for 
the  big  carriers.This  is  the  area  where 
just  about  everyone  has  a  story  and  a 
complaint.  The  only  place  we  found 
some  positive  feedback  about  billing 
was  with  the  second-tier  carriers,  in 
particular  Masergy. 

The  problems  range  from  readabil¬ 
ity  to  inaccuracy  to  volume.  The  bill 
“comes  every  single  month,  and  liter¬ 
ally,  a  guy  comes  off  the  back  of  a 
truck  with  a  dolly  of  boxes.  It  takes 
four  full-time  people  to  go  through 
them,” says  the  CTO  of  a  global  finan¬ 
cial  services  company  that  uses 
AT&T  and  MCI  who  asked  to  remain 


How  many  carriers 
do  you  use?, - 21  to  50: 

5% 


10  to  20: 

26% 

4  to  7: 

18% 


AT&T  tops  the  field 

Respondents  were  asked  to 
name  their  primary  carriers. 


CARRIER 

% 

AT&T 

58 

MCI 

43 

Sprint 

33 

Qwest 

30 

SBC 

25 

BellSouth 

20 

Verizon 

13 

Equant 

10 

Internap 

10 

Level3 

8 

UUNET 

5 

Infonet 

5 

XO 

3 

BT 

3 

Masergy 

3 

Broadwing 

3 
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anonymous.“lt’s  a  mess. They  have  to 
come  up  with  a  whole  new  billing 
scheme.  These  guys  don’t  believe  in 
consolidation.  Every  node  is  a  differ¬ 
ent  bill  and  paged  don't  know  how  to 
describe  it.” 

Companies  consistently  say  they 
spend  10  to  40  hours  per  month 
assessing  and  correcting  phone  bills. 
That’s  led  many  IT  executives  to 
demand  better  online  billing  systems 
—  which,  so  far,  they  haven’t 
received. 

Installation  deprivation 

Installation  time  is  also  an  area 
where  the  carriers  have  room  for 
improvement.  Qwest  scored  the  best 
at  3.7,  followed  by  Sprint  at  3.5. 

The  amount  of  time  companies 
wait  for  circuit  installations  varies 
depending  on  the  geographical  loca¬ 
tion  and  the  provider.  The  range  for  a 
newT-1  line  is  four  to  12  weeks,  with 
the  average  at  about  six  weeks.  T-3 
lines  take  12  to  16  weeks.  And  faster, 
more  complex  optical  services  or 
diverse  lines  can  take  up  to  24  weeks. 
As  one  university  CIO  points  out, 
these  time  frames  are  after  the  paper¬ 
work  is  completed,  which  can  take 
up  to  two  weeks. 

One  would  think  that  the  size  of  a 
company  should  dictate  the 
response  time  for  installations.  But 
we  didn’t  find  this  to  be  true.  “The 
speed  of  installation?  They  all  stink 
at  that.  There  are  always  a  million 
and  one  excuses,”  says  a  communi¬ 
cations  director  for  a  government 
agency  who  asked  not  to  be  named. 
“Circuit  installation  is  terrible.  It 
takes  45  days  for  a  T-l.T-3  is  a  com¬ 
plete  mystery  —  120  days  would  be 
good;  180  is  average.” 


The  lowest  overall  rankings  are  for 
management  tools.  The  only  carrier 
to  achieve  higher  than  a“fair"rating  is 
AT&T,  with  3. 17. The  others  were  sub- 
3.0,  and  Verizon  was  all  the  way  down 
to  1.75. 

The  tools  are  unsophisticated,  IT 
executives  say.  Simply  finding  out 
basic  information, such  as  discard  eli¬ 
gibility  is  difficult  from  some  carriers, 
respondents  say  Complaints  about 
MCI  in  this  area  were  particularly 
prevalent.  MCI  has  merged  so  many 
companies  together  that  it’s  become 
difficult  to  offer  management  tools 
over  various  operations  support  sys¬ 
tems  and  networks. 

Before  the  dot-com  meltdown,  the 
carriers  focused  heavily  on  Web- 
based  management  tools.  But  now,  IT 
executives  say  that  their  efforts  have 
all  but  vanished  in  this  area,  and 
they’d  like  to  see  some  functionality 
—  that’s  somewhat  affordable,  too. 

Carriers  are  becoming  more  fo¬ 
cused  on  managed  services,  but 
they  need  to  offer  more  than  an  all- 
or-nothing  approach,  says  David 
Moy,  technical  services  manager  for 
G.  James  Australia,  which  is  a  pri¬ 
vately  owned  group  of  glass  and  alu¬ 
minum  companies.  “We’re  looking 
for  a  more  complete  service  from 
carriers,  but  now,  you  either  buy 
bandwidth  or  they  run  the  whole 
network.  There’s  no  in-between,”  he 
says.  “There  are  points  where  you 
don’t  want  to  manage  the  network, 
but  you  don’t  want  them  to  do 
everything.  We  run  24-7,  but  we  don’t 
like  to  wake  someone  up  when  we 
have  a  problem  at  2  a.m.” 

Many  companies  say  that  man¬ 
aged  services  work  well  for  them, 
but  some  said  the  services  didn’t 
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all  stink  at  that.  There  are  always 
a  million  and  one  excuses 

^  Communications  director  at  a  government  agency  *f 


meet  expectations. One  manufactur¬ 
er  tried  to  use  AT&T’s  managed  ser¬ 
vices  for  18  months,  “but  it  flat  out 
didn’t  work,”  says  a  network  manag¬ 
er  who  asked  not  to  be  named.  The 
company  switched  to  Sprint  and 
pays  Visual  Networks  to  monitor  the 
network  using  Visual’s  DSU/CSUs  at 
remote  sites. 

MCI  focuses  on 
customer  service 

When  it  comes  to  customer  service, 
MCI  scored  the  best,  followed  by 
Sprint.  Verizon  had  the  lowest  score. 
Customers  complained  that  basic 
areas,  such  as  getting  responses  to 
questions,  take  way  too  long.  The  car¬ 
riers  simply  aren’t  as  organized  as 
they  need  to  be,  customers  add. 

MCI’s  high  ratings  reflect  growing 
efforts  to  make  up  in  customer  ser¬ 
vice  what  the  company  has  lost  in 
reputation  because  of  its  financial 
scandal.  Repeatedly,  IT  executives 
said  they  have  seen  a  significant 
improvement  in  MCI’s  response  time, 
trouble-shooting  and  proactive  notifi¬ 
cation  of  problems. 

Of  course,  the  customer  experience 
depends  heavily  on  the  quality  of  the 
account  team.  Companies  with  expe¬ 
rienced,  stable  account  representa¬ 
tives  who  understand  their  business 
are  happy  with  their  provider. The  sur¬ 
vey  found  that  there  are  pockets  of 


IXCs  vex  LEGs 

Traditional  long-distance  carriers  (AT&T,  Sprint,  MCI)  scored  higher  as  a  group  than  traditional  local  exchange  carriers. 


Reliability 

Network 

performance 

Technology 

Cost 

Customer 

service 

Ease  of  use 

Management 

tools 

SLAs 

Installation 

times 

Billing 

AT&T 

3.94 

3.90 

3.70 

3.55 

3.50 

3.21 

3.17 

3.13 

3.00 

2.78 

MCI 

4.18 

4.09 

3.18 

3.73 

3.83 

3.10 

2.89 

3.40 

3.00 

3.00 

Sprint 

4.38 

4.22 

3.70 

4.10 

3.80 

3.60 

2.78 

3.50 

3.50 

3.38 

3.51  j 

Average 

4.17 

4.07 

3.53 

3.79 

3.71 

3.30 

2.95 

3.34 

3.17 

3.05 

Reliability 

Network 

performance 

Technology 

Cost 

Customer 

service 

Ease  of  use 

Management 

tools 

SLAs 

Installation 

times 

Billing 

BellSouth 

4 

- - 

4.0 

3.75 

3.6 

2 

3.2 

3.4 

3.2 

1.75 

3.5 

3 

3 

Verizon 

4.0 

3.3 

3.0 

3.0 

3.3 

2.3 

3.0 

3.0 

1.5 

SBC 

3.25 

3.25 

3.5 

3 

3.5 

2.5 

3.5 

3 

3.25 

Qwest 

4 

3.7 

3.5 

3.7 

3 

4 

2.3 

4 

3.7 

2.3 

Average 

3.94 

3.64 

3.01 

3.35 

3.10 

3.50 

2.21 

3.50 

3.18 

2.51  [~ 
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good  and  bad 
service.  One  of 
the  carrier’s  biggest  challenges  —  if 
not  the  biggest  challenge  —  is  to  pro¬ 
vide  consistent,  solid  services. 

Optimization  gap 

Where  all  the  carriers  fall  short  is 
helping  customers  with  network  opti¬ 
mization.  Rarely  do  the  carrier  sales 
reps  call  customers  to  let  them  know 
when  a  circuit  is  reaching  capacity, 
for  example. “You’d  think  they’d  want 
to  tell  me  when  to  order  a  new  circuit 
—  it’s  more  business  for  them,”  says 
John  Wade,  CIO  of  St.  Luke’s 
Healthcare  in  Kansas  City  Mo.  “But 
they  don’t.  And  it  makes  no  sense.” 

Even  though  costs  aren’t  dropping 
the  way  they  used  to,  participants 
rated  carrier  costs  relatively  favor¬ 
ably.  Sprint  received  the  best  ratings 
for  cost  with  a  4. 1  .Verizon  scored  the 
lowest,  with  a  3.0. That  said,  41.7%  of 
respondents  cited  “reduced  costs” 
on  their  vendor/carrier  wish  list. 
Basically,  they’re  saying  that  costs  are 
generally  fair  to  good,  but  they  could 
be  better. 

The  same  holds  true  for  SLAs.  The 
general  view  is  that  they’re  needed  to 
keep  the  carriers  on  their  toes,  but 
companies  must  take  the  time  and 
spend  the  money  to  negotiate  more 
stringent  SLAs  than  the  standard 
ones  that  carriers  offer.  Generally  the 
SLAs  cover  uptime,  mean-time-to- 
repair  or  respond,  latency  and 
packet  loss.  However,  some  compa¬ 
nies  negotiate  very  tough  financial 
penalties  —  tied  to  business  loss  — 
to  guarantee  top  performance  and 
attention  of  top  executives. 

Sprint  and  Qwest  score  the  highest 
in  this  area,  with  a  3.5  and  a  4.0, 
respectively. The  lowest  ratings  are  for 
AT&T,  3.13,  and  Verizon,  3.0. 

The  bottom  line  is  that  companies 
are  looking  for  more  innovation,  bet¬ 
ter  management  tools  and  improved 
customer  service  from  carriers.  And 
they’re  willing  to  give  second-tier  car¬ 
riers  a  shot. 

Gareiss  is  principal  research  officer 
at  Nemertes  Research,  which  special¬ 
izes  in  quantifying  the  business  impact 
of  emerging  technologies.  She  can  be 
reached  at  robin@nemertes.com. 


One  caveat:  Respondents  admitted  being  tougher  on  AT&T  than  other  carriers  because  it  has  long  been  the  “gold  standard.” 
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Security  event 
management  software 


NetIQ's  Security  Manner  does  an 
impressive  job  sorting  through  security 


Tm  BY  MANDY  ANDRESS,  NETWORK  WORLD  LAB  ALLIANCE 

he  power  and  complexity  of  NetIQ’s  Security  Manager  5.0  —  the  latest  ver¬ 
sion  of  the  company’s  security  event  management  product  —  is  well 
masked  by  its  consistent  user  interface  and  overall  ease  of  use. 


When  we  first  tested  security  event 
management  products  late  last  year, 
NetlQ  opted  out  because  it  was  working 
on  this  new  version  of  its  product. 
Measured  using  the  same  methodology 
as  our  original  test,  Security  Manager  5.0 
places  a  close  second  to  ArcSight’s 
ArcSight  2.5  product,  which  earned  top 
honors  (www.nwfusion.com,  DocFinder: 
2921).  Security  Manager  is  easy  to  install 
and  is  scalable,  but  the  ArcSight  product 
supports  more  devices  out-of-the-box 
and  has  a  slightly  better  GUI. 

Security  Manager  comprises  three 
main  components:  Event  Manager,  In¬ 
trusion  Manager  and  Log  Manager.  Event 
Manager  is  the  central  console  that  man¬ 
ages  and  displays  security  events.  In¬ 
trusion  Manager  watches  incoming  logs 
for  signs  of  intrusion  and  either  generates 
alerts  or  takes  a  defined  action  when  an 
incident  is  suspected.  Log  Manager  is  the 
workhorse, handling  collection, standard¬ 
ization  and  archiving  of  all  managed 
logs.  In  our  tests,  we  installed  all  compo- 


Company:  NetlQ,  www.netiq.com  Cost: 
Starts  at  $2,500  for  the  console  and  $1,100 
per  server.  Pros:  Excellent  configuration 
wizards;  focus  on  ease-of-use.  Cons: 
Windows-centric  focus  may  not  fit  some 
organizations;  low  number  of  devices 
supported  out-of-the-box. 

The  breakdown 


Filter/correlation  30%  3.5 


GUI  30%  3.5 


Device  support  15%  4 


Reports  15%  4 
Help/documentation  10%  4 


TOTAL  SCORE  3.7 


Scoring  Key:  5:  Exceptional:  4:  Very  good;  3: 
Average;  2:  Below  average;  1:  Consistently 
subpar 


NetIQ’s  Security  Manager  came  in  a  close 
second  to  ArcSight  in  comparison  of  an 
earlier  test 


nents  on  one  server  without  running  into 
performance  issues  (see  How  we  did  it, 
right).  For  a  production  environment 
where  you  would  watch  a  large  number 
of  events,  youd  probably  want  to  split 
these  components  up  onto  multiple 
machines. 

Security  Manager  is  an  agent-based 
product,  with  agents  available  for  servers 
running  various  flavors  of  Windows  and 
Unix/Linux. These  agents  cull  the  servers’ 
event  logs.  They  perform  initial  rule 
analysis  on  the  incoming  events  and  for¬ 
ward  them  to  a  central  database. Security 
Manager  also  includes  a  proxy  agent  — 
which  must  reside  on  a  Windows 
machine  —  that  effectively  acts  as  a  sys- 
log  server  and  taps  into  other  security 
and  network  devices  such  as  firewalls, 
intrusion-detection  systems  and  routers. 

Security  Manager  uses  wizards  to  per¬ 
form  most  tasks,  such  as  agent  installa¬ 
tion  and  correlation  definition.  This  is 
one  of  Security  Manager’s  greatest 
strengths,  as  each  wizard  maintains  a 
consistent  interface  to  minimize  training. 
We  used  the  agent  installation  wizard  to 
install  agents  on  our  Windows  and  Unix 
systems,  and  to  install  proxy  agents  to 
capture  Check  Fbint,  Snort  and  Cisco 


switch  logs.  Setup  for  Snort  logging  was 
simple  and  took  just  minutes  following 
the  instructions  provided  in  the  Security 
Manager  documentation. 

Security  Manager  provides  out-of-the- 
box  support  for  many  of  the  leading 
products  on  the  market,  such  as  Check 
Fbint  and  Snort,  although  it  supports 
fewer  than  other  products  we  tested. 
Through  the  NetlQ  Development  Con¬ 
sole,  administrators  can  create  new  data 
providers  to  handle  logs  from  in-house 
applications  or  other  third-party  prod¬ 
ucts  not  initially  supported.  We  would 
like  to  see  a  data  provider  configuration 
wizard  to  make  this  setup  process  more 
consistent  with  the  rest  of  the  product. 

The  Security  Manager  administrative 
interface  operates  as  a  Microsoft  Man¬ 
agement  Console  snap-in,  so  all  aspects 
of  this  product  are  managed  through  a 
standard  Windows  interface.  A  Web  con¬ 
sole  is  also  available.  One  nice  feature  to 
both  interfaces  is  an  easy  access  icon  in 
the  system  tray  that  quickly  launches 
commonly  used  wizards  and  consoles. 
Security  Manager  includes  numerous  dif¬ 
ferent  consoles  —  Analysis  Console, 
Development  Console  and  Incident 
Management  Console,  which  are  all 
accessible  through  the  main  Monitor 
Console. 

Creating  event  correlation  rules  is  also 
a  simple  process  through  the  Corre¬ 
lation  Wizard.  We  created  our  test  corre¬ 
lation  rules  in  minutes.  Development 
Console  also  can  be  used  to  fully  cus¬ 
tomize  your  rules. 

A  unique  feature  in  Security  Manager  is 
the  Incident  Management  component. 
Here,  Security  Manager  can  watch 
incoming  events  for  signs  of  a  known 
attack  and  alert  security  administrators 
when  it  finds  something  suspicious. 
Security  Manager  also  includes  some 
incident-tracking  options,  which  let 
administrators  enter  company-related 
comments  for  flagged  incidents. 

Security  Manager  includes  more  than 
300  default  views  of  the  data  and  reports 
of  the  data  stored  in  the  database.  The 
three  main  categories  are  forensic,  trend 
and  summary  reports. 

Security  Manager  is  a  strong  product  in 


the  security  event  management  market. 
Its  fairly  Windows-centric  design  might 
not  fit  all  organizations,  but  its  ease-of-use 
while  maintaining  a  high  level  of  flexibil¬ 
ity  and  complexity  is  impressive. 

Andress  is  president  of  ArcSec  Tech¬ 
nologies,  a  security  company  focusing  on 
product  reviews  and  analysis.  She  can  be 
reached  at  mandy@arcsec.com. 


How  We  Did  It 


We  set  up  a  test  bed  to  run  a 
number  of  different  prod¬ 
ucts  and  systems  to  moni¬ 
tor.  This  included  Windows  2000 
Server;  Microsoft  Internet  Inform¬ 
ation  Server  5.0;  Red  Hat  Linux  7.3; 
Apache  1.3.28;  Linux  firewall 
IPTables;  Check  Point  NG;  Snort 
2.0;  Cisco  VPN  Concentrator;  Cisco 
Catalyst  Switch  3500;  NetScreen- 
100  running  ScreenOS  2.5,  Nessus 
and  Solaris  2.8;  McAfee  Entercept; 
Tripwire;  and  Cisco  Security  Agent. 

After  device  configuration,  we 
created  various  filters  and  correla¬ 
tion  events.  We  launched  Blade 
Software's  IDS  Informer,  Nessus 
and  Internet  Security  Systems 
Internet  Scanner  to  trigger  events 
in  our  devices.  We  sustained 
approximately  300  events  per  sec¬ 
ond  during  this  testing.  As  events 
were  logged,  we  created  cases 
and  incident  investigation  in  the 
products  that  provided  this  func¬ 
tionality. 


M  Lab  Alliance 


Andress  also  is  a  member  of  the  Network 
Worid  Lab  Alliance,  a  cooperative  of  the 
premier  testers  in  the  network  industry, 
each  bringing  to  boar  years  of  practical 
experience  on  every  test,  for  more  Lab  Al¬ 
liance  information,  including  what  it  lakes  u 
become  a  partner,  go  to  www.nwfusion 
.com/alliance. 
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Peribit  Networks’ 
SR-100  appliance 


Imagine  your  network  infrastructure  as 
a  fleet  of  trucks  traveling  across  a  major 
highway.  While  the  cargo  is  important, 
these  trucks  are  often  nearly  empty  Telco 
WAN  link  charges  are  the  equivalent  of 
highway  tolls  that  can  cost  your  compa¬ 
ny  an  arm  and  a  leg. 

WAN  link  compression  devices  such  as 
the  Peribit  SR-100  let  you  reduce  the 
number  of  trucks  being  sent  yet  deliver 
the  same  cargo  to  each  destination.  You 
spend  less  on  both  highway  tolls  and 
truck  maintenance. 


Frugal  WAN  usage 

We  installed  a  pair  of  SR- 100s,  in  com¬ 
bination  with  up  to  four  SR-50  appli¬ 
ances  as  compression  subprocessors,  on 
our  labs  six-segment  Fast  Ethernet  net¬ 
work  (see  How  we  did  it,  below). 


Net  Results 


SR-100 


OVERALL  RATING 

hjQkJI 


NetworkWorld 


Company:  Peribit 

Networks,  www.  _ _ 

mmpi 

$24,000;  SR-100F  starts  at  $26,500;  Client 
SR-50  is  $6,000.  Pros:  Excellent  compres¬ 
sion;  reliable;  scalable.  Cons:  Pricey  in  some 
configurations;  minimal  documentation. 


The  breakdown! 


Performance  40%  5 
Ease  of  use  20%  5 


Scalability  20%  5 
Documentation  10%  2 
Installation  10%  4 
TOTAL  SC0REi4.6 


Scoring  Key:  5  5 -Exceptional;  4:  Very  good;  3: 
Avefdgo;  2:  Below  average;  1:  Consistent ly 
4uhpar  •  •  ' 
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Bandwidth  boosting  box 
boasts  boffo  benefits 


BY  BARRY  NANCE,  NETWORK  WORLD  LAB  ALLIANCE 


Adding  Peribit  Networks’  new  SR-100  appliance  to  your  WAN  link  is  an 
excellent  way  to  increase  bandwidth  without  buying  more  capacity  Our 
recent  test  of  the  SR-100  showed  the  appliance  scales  upwards  in  amaz¬ 
ingly  flexible  patterns,  offers  a  high  degree  of  reliability  and  installs  quickly  and 
painlessly  These  features  earn  the  SR-100  a  Clear  Choice  Award. 


Peribit's  SR-100  increases  bandwidth  of  a  WAN  link  by  a  factor  of  5.2. 


The  SR-lOO’s  ability  to  quickly  and  thor¬ 
oughly  compress  data  at  one  end  of  a 
link  and  fluff  it  back  up  at  the  other  (you 
buy  Peribit  devices  in  pairs  and  typically 
connect  each  one  between  a  switch  and 
a  router)  is  impressive.  We  used  FTP 
server-based  file  copying  of  1M-,  10M- 
and  50M-byte  files, e-mail  traffic  and  Web 
server  accesses  to  test  the  SR-  100  s  per¬ 
formance.  In  each  test,  a  pair  of  SR-lOOs 
typically  increased  WAN  link  bandwidth 
by  a  compression  factor  of  5.2,  and  it  did 
so  at  wire  speeds,  without  introducing 
delay  (see  Table  1,  www.nwfusion.com, 
DocFinder:2928). 

By  themselves,  SR- 100s  are  formidable 
tools  for  increasing  the  amount  of  data  a 
WAN  link  carries.  For  the  sake  of  scalabil¬ 
ity,  however,  an  SR-100  can  attach  to  the 
WAN  through  other  Peribit  devices,  such 
as  the  SR-50,  which  the  SR-100  uses  as 
compression  subprocessors  (Peribit  calls 
them  SR-100  clients).  Moreover,  Peribit 
says  an  SR-100  can  connect  to  up  to 
2,000  other  Peribit  devices  across  as 
many  WAN  links  and  can  handle  net¬ 
work  traffic  at  rates  of  up  to  155M  bit/sec. 
In  our  tests,  we  achieved  aggregate 
throughput  of  8.2M  bit/sec  through  a  T-l 
link  when  we  attached  two  SR-50  devices 
to  each  SR-100. 

To  our  delight,  the  SR-100  has  a  path- 
optimization  feature.  When  we  estab¬ 
lished  parallel  T-l  and  symmetrical  DSL 
links  between  sites,  we  could  configure 
the  SR-lOOs  to  shunt  low-priority  email 
through  the  less-expensive  SDSL  link  and 
send  other,  business-critical  traffic 
through  the  higher-cost  T-l  link.  More 
over,  because  both  links  were  com¬ 
pressed,  we  could  extend  each  links  life 
span  before  upgrading  its  bandwidth. 

Compressing  file  transfers  and  Web 
pages  is  one  thing,  but  we  also  wanted  to 
test  business-application  traffic.  We  re 
played  a  Sniffer  packet  capture  of  SQL 
Server  database  transactions  through  a 
variety  of  WAN  links  to  see  how  the  SR- 
100  would  fare.  Not  only  did  the  SR-100 
increase  the  effective  WAN  link  band¬ 


width  by  a  factor  of  5.2,  it  also  increased 
the  database  transaction  rate  (see  Table 
2,  DocFinder:  2929). 

Installation  and  documentation 

After  installing  the  SR-100  by  simply 
cabling  it  inline  between  a  switch  and 
router,  configuring  it  was  straightforward 
with  Peribit’s  management  console  soft¬ 
ware.  A  quick-start  booklet  accompa¬ 
nies  the  device,  and  online  documenta¬ 
tion  is  clear  and  comprehensive.  The 
device  even  reverts  automatically  and 
smartly  to  pass-through  mode  (no  com¬ 
pression)  if  it  suffers  an  internal  fault  or 
power  failure. 

The  SR-100  seems  a  bit  pricey  in  some 
configurations,  such  as  linking  many 
slow-speed  frame  relay  lines  to  a  central 


LAN.  On  the  other  hand,  in  other  config¬ 
urations, such  as  multiple T-3  lines, the  SR- 
100  seems  downright  inexpensive.  An  SR- 
100C  starts  at  $24,000,  while  the  SR-100F 
starts  at  $26,500.  Client  SR-50s  cost 
$6,000. 

Until  the  telcos  drastically  reduce 
frame  relay  and  leased  line  prices,  the 
SR-100  is  a  nifty  way  to  make  your  telco 
carry  more  of  your  data  at  a  lower  cost.  It 
lets  you  defer  buying  more  bandwidth  or, 
for  some  WAN  links,  actually  reduce  the 
bandwidth  you’re  paying  for. 

Nance  runs  Network  Testing  Labs  and 
is  the  author  of  Introduction  to 
Networking,  4th  Edition  and  Client/ 
Server  LAN  Programming.  He  can  be 
reached  at  barryn@erols.com. 


How  We  Did  It 


We  installed  a  pair  of  SR-lOOs,  in  combination  with  up  to  four  SR-50s 

attached  as  compression  subprocessors,  on  our  lab's  six-segment  Fast 
Ethernet  network.  Each  segment  consists  of  a  server  and  25  clients,  all 
connected  to  the  Internet  viaT-1  and  frame  relay  lines.  Routers  and  back-to- 
back  DSU/CSUs  connected  the  segments  to  each  other  with  56K,  128K,  256K, 
512K  or  1.544M  bit/sec  Committed  Information  Rate  frame  relay  links  and  full 
T-1  and  T-3  links.  We  also  used  a  Nokia  DSLAM  and  Efficient  Networks' 
Speedstream  5851  DSL  modems  to  create  secondary  parallel  data  paths 
between  segments.  We  ran  Peribit’s  central  device  management  console  soft¬ 
ware  on  a  256M-byte  RAM,  6G-byte  hard  disk  Windows  XP-based  Dell  Inspiron 
5000.  To  access  Peribit's  Web-based  configuration  and  reports  interface,  we 
used  Internet  Explorer  6.0. 
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PROJECT  MANAGEMENT 
BUSINESS  JUSTIFICATION 


Staffing  by  numbers 

Experts  share  insights  into  how  many  people  it  takes  to  run  an  IT  operation. 


I  NetworkWorid 


■  BY  LINDA  LEUNG 

As  the  worst  of  the  downturn  is  over,  budgets  are  beginning  to  thaw  for  IT  staffing.  As 
you  make  the  case  for  increasing  head  count,  how  many  IT  professionals  do  you  need 
to  run  your  company,  and  in  which  IT  disciplines  should  your  team  members  be 
experts?  It  helps  to  have  a  handle  on  how  your  peers  are  staffing  their  organizations. 


According  to  Meta  Groups  2002  study  —  its  most  recent 
research  on  this  topic  —  the  average  U.S.  firm  budgets 
3.53%  of  revenue  to  IT, and  the  average  number  of  employ¬ 
ees  supported  by  one  IT  staff  member  is  120.3.  While  these 
numbers  are  useful  indicators,  Meta  and  other  recruitment 
experts  say  the  actual  staffing  levels  of  an  organization 
depend  on  the  company  culture  and  its  industry 

In  the  financial  industry,  for  example,  one  in  five  employ¬ 
ees  —  or  20%  of  all  staff  —  could  be  in  IT,  says  John  Piot, 
executive  vice  president  at  Impact  Innovation  Group,  a 
staffing  firm  in  Atlanta.“Financial  companies  have  mission- 
critical  systems  that  require  [a  mix  of]  maintenance  and 
project  staff,”  he  says.  Meta  breaks  down  the  finance  field 
into  financial  services,  insurance  and  banking,  and  reports 
that  13.23%, 9.36%  and  7%  of  the  workforce  in  those  respec¬ 
tive  sectors  are  IT  employees. 

In  contrast,  IT  employees  in  the  transportation  industry 
make  up  just  1.89%  of  their  organizations,  according  to 
Meta.  Piot  attributes  the  reason  for  the  small  IT  presence  to 
the  higher  concentration  of  non-IT  workers,  such  as  an  air¬ 
line’s  flight  crew  members  and  baggage  handlers. 

Industry  sector  also  plays  a  role  in  determining  the  ratio 
of  IT  support  staff  to  company  employees.  For  financial  ser¬ 
vices,  the  ratio  could  be  l-to-5,  because  of  the  complexity 
and  mission-critical  nature  of  the  systems  that  run  the  busi¬ 
ness;  while  the  ratio  in  the  transportation  industry  could  be 
l-to-50,Meta  says. 

Some  companies  calculate  the  number  of  systems  admin¬ 
istrators  they  need  according  to  the  number  of  servers  they 
have. Typically  there  is  one  systems  administrator  for  every 
seven  to  15  servers,  Piot  says. You  can  get  away  with  a  high- 


Workload  by  IT  roles 


er  ratio  of  servers  per  systems  administrator  if  your  serv¬ 
er  infrastructure  is  fairly  consistent  and  standardized. 
“But  if  you  have  a  mix  of  Windows  and  Unix  servers  and 
different  operating  systems,  the  ratio  is  lower.  The  more 
complexity  is  added  to  the  environment,  the  more  peo¬ 
ple  you  require,”  Piot  says. 

On  the  network  side  of  the  house,  the  ratio  of  commu¬ 
nication  devices  per  IT  staffer  could  be  as  high  as  45  to 
50  devices  to  one  network  administrator.  “Network 
devices  are  easier  to  maintain  because  there  are  fewer 
moving  parts,"  Piot  notes.  However,  the  ratio  can  increase 
25%  if  multi-vendor  devices  are  used,  requiring  more 
people  with  knowledge  of  different  systems. 

Unique  variables 

Company  culture  and  business  goals  also  play  a  role 
in  determining  an  organizations  staffing  levels.  For 
example,  how  soon  do  you  want  help  desk  staff  to 
answer  calls  —  within  one  ring?  What  are  your  service- 
level  agreements  to  your  users?  Do  most  of  your  employ¬ 
ees  work  out  in  the  field  or  telecommute?  The  more 
remote  your  workers  are,  and  the  higher  your  service 
levels,  the  more  IT  staffers  you  need  to  field  help  desk 
calls  compared  with  an  IT  operation  that  serves  employees 
who  are  all  located  in  the  same  building,  says  Mark 
Lutchen.a  partner  at  PricewaterhouseCoopers. 

“What’s  the  philosophy  of  your  IT  organization?  If  it 
never  uses  packaged  applications  and  builds  its  own 
software  and  maintains  it, and  if  it  doesn’t  standardize  on 
equipment,  then  you  need  more  people  on  board  to  do 
maintenance  on  different  platforms  —  that’s  a  high-cost 


IT  employment  by  industry 

Some  fields  are  more  reliant  on  IT  workers  than 
others.  IT  professionals  make  up  a  good  chunk  of 
the  workforce  of  financial  services  firms,  while 
food  and  beverage  processing  companies  employ 
few  IT  staff. 

Percentage  of  workforce  in  IT 

Financial  services  13.23% 
Insurance  9.36% 

Telecommunications  8.28% 

IT  7.61% 

Banking  7.00% 

Hospitality  and  travel  6.53% 

Media  5.98% 

Professional  Services  5.57% 

Utilities  5.13% 

Energy  4.81% 

Retail  4.33% 

Consumer  products  3.46% 

Healthcare  3.44% 

Electronics  3.27% 

Chemicals  2.96% 

Construction  and  engineering  2.60% 

Manufacturing  2.20% 

Retail  2.07% 

Metals/natural  resources  2.04% 

Transportation  1.89% 

Food/beverage  processing  1.86%  _  .soo»cr  met*  group 


scenario,”  Lutchen  says. 

But  staffing  your  IT  operations  is  not  just  about  knowing 
how  many  workers  you  need  and  the  technical  skills  they 
should  have  to  serve  your  organization  at  that  point  in 
time;  you  need  to  consider  where  your  business  wants  to 
be  in  the  future  and  whether  your  staff  can  make  the  tran¬ 
sition.  Does  your  company  offer  career  paths  for  each  indi¬ 
vidual  that  reflects  where  the  business  is  headed?  Are  your 
IT  professionals  knowledgeable  about  your  business  envi¬ 
ronment  and  able  to  communicate  with  users? 

Hiring  contractors  is  also  a  useful  way  to  augment  exist¬ 
ing  staff  numbers,  particularly  as  companies  begin  to 
reopen  projects  that  were  closed  during  the  economic 
downturn.  Dru  Neikirk,  a  partner  at  IT  staffing  firm  MRK 
Consulting  in  Houston,  is  seeing  demand  for  contractors  to 
take  on  project  management,  change  management,  con 
figuration  management  and  systems  design. “It  takes  tin; 
to  train  up  staff  so  you  hire  specialists  at  peak  demands,”  !u 
says. 

Piot  of  Impact  Innovation  advocates  splitting  voitr  i 
team  between  75%  permanent  and  25%  contract  stuh'-v, 
projects  go  in  and  out, you  don’t  want  100%  of  you;  staff  ‘ 
be  permanent  and  have  to  start  laying  people  off  if 
big  project  is  canceled,”  he  says.B 


Use  these  figures  as  a  starting  point  for  determining  the  IT  help  you  need. 


IT  role 

Workload 

IT  manager  and  project  leader 

One  manager/supervisor  for  eight  staff  positions. 

Network  analyst 

One  analyst  handles  $886,000  in  network  monitoring  devices,  systems  and 
interfaces  (or  up  to  $2.5  million,  if  voice  telecom  is  included). 

Intranet/Internet  specialist 

35  specialists  to  support  Web  sites. 

E-mail  administrator 

One  administrator  for  every  1,400  mail  users. 

Help  desk  staff 

One  analyst  to  handle  600  transactions  per  month  (average  contact  handle 
time  is  12  minutes). 
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Sentry  Gives  You  Secure  Web/IP  Based  Remote  Site  Management 


"NEW!"  Secure  Shell  (SSHv2)  Encryption  « 
"NEW!"  SSLv3  Secure  Web  Browser « 
"NEW!"  Active  Directory  with  LDAP  « 
SNMP  MIB  &  Traps  « 
Integrated  Secure  Modem  « 
True  RMS  Power  Monitoring  « 
Outlet  Receptacle  Grouping  for  Dual-Power  Servers  « 
Fail-Safe  Transfer  Switch  for  Single-Power  Supply  Servers  « 
Power-up  Sequencing  Prevents  Power  In-rush  Overload  « 
Temperature  &  Humidity  Environmental  Monitoring  « 
Zero  U  &  Rack-mount  Models  « 
1 1 0/208  VAC  Models  with  30-Amp  Power  Distribution  « 
NEBS  Approved  -48  VDC  Models  Available  « 


Server  Technology 


Solutions  for  the  Data  Center  Equipment  Cabinet 


When  servers  and  network  devices 
in  the  data  center  lock-up,  network 
managers  need  fast,  secure  and 
reliable  tools  to  respond.  With 
Sentry™  Remote  Site  Managers, 
an  administrator  can  immediately 
reboot  a  remote  system  with  just 
a  few  mouse  clicks.  Sentry  also 
provides  accurate  input  current 
power  monitoring,  environmental 
monitoring  and  integrated  secure 
console  management  using  SSH. 
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Server  Technology,  Inc* 


Server  Technology,  Inc. 
1040  Sandhill  Drive 
Reno,  NV  89521 
USA 


toll  free  +1.800.835.1515 

tel +1.775.284.2000 
tax +1.775.284.2065 


www.servertech.com 

sales@servertech.com 


©Server  Technology,  Inc.  Sentry  is  a  trademark  of  Server  Technology,  Inc 
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WE  MAKE  T  HAPPEN 


Custom  Management  Levels 


OBSERVER 

•  Decode  over  500  protocols 

•  Long-term  network  trending  &  analysis 

•  Real-time  statistics 

EXPERT  OBSERVER 

•  What-lf  Modeling  Analysis 

•  Expert  Analysis 

•  Connection  Dynamics 

OBSERVER  SUITE 

,•  Csmplete  SNMP  device  management 

•  Supports  full  RM0N1,  RM0N2.  HCRM0N 
'•Web  Publishing  Reports 


Remote  &  Hardware  Options 

REMOTE  NETWORKING  PROBES 

•  Fully  distributed 

•  Monitor  up  to  64  NICs  simultaneously 

•  New  levels  of  problem  solving  collaboration 

GIGABIT  &  WAN  HARDWARE  OPTIONS 

•  Portable  analyzer  systems 

•  Rack-mount  Probes  ready  to  go 

•  Direct,  passive  link  for  independent  views 


US  &  Canada  Toli  free:  (800)  526-5958  •  Fax:  (952)  932-9545  •  UK  &  Europe:  +44  (0)  1959  569880 

One  Network  fj/  Complete  Control  Wired  to  Wireless  •  LAN  to  WAN 


Test-drive  the  new  Observer  9  today  and  see  how  it  immediately 
finds  problems  you  didn’t  know  you  had,  optimizes  network  traffic 
and  provides  insight  for  future  planning.  Call  800-526-5958  for 
a  full  featured  evaluation  or  visit  our  website  at 

www.networkinstruments.com/nine 


Introducing  Observer  9 

•  New  Application  Analysis 

•  Remote  probes  now  provide  multi-interface  and 
multi-session  support 

•  Industry-first  4GB  packet  capture  buffer 

•  Wireless  Site  Survey  Modes 

•  Nanosecond  resolution 

•  Now  over  450  Expert  Events 

•  SNMP.  RM0N  and  now  HCRM0N  support 
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OBSERVER 


OBSERVER 


www.networkinstruments.com/nine 

©  2004  Network  Instruments,  LLC.  All  rights  reserved.  Observer,  Network  Instruments  and  the 
Network  Instruments  logo  are  registered  trademarks  at  Network  Instruments,  LLC. 
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AlterPath'"  KVM  /net 
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AlterPath"  KVM 
Terminator 


Sun 

Unix 

Windows 

Server 

Server 

Server 

Ethernet 


Servers 

■  Syslog 

■  Active  Directory 
and  RADIUS 


Cyclades  elevates  today’s  KVM  solutions  with  the  AlterPath™  KVM /net 

AlterPath™  KVM/net.  In  direct  response  to  feedback  EnterPr,sc  KVM  Solutlons 
from  serving  80%  of  Fortune  100  companies, 
the  AlterPath™  KVM/net  brings  a  unique  set  of 
features  unparalleled  in  the  market  today: 

■  KVM  over  IP 

■  Up  to  500  ft  (CAT-5)  cabling 

■  Up  to  1024  servers  per  system 

■  Integrated  power  management  capability 

■  Advanced  Security  &  server-based  Authentication 

With  fifteen  years  of  networking  expertise,  only  Cyclades  can  offer  a  complete 
out-of-band  management  solution  that  connects  your  environment  today  and 
integrates  into  your  data  center  of  tomorrow. 

Call  us  now  and  put  an  end  to  your  search. 


www.cyclades.com/nw 

1.888.cyclades  >  sales@cycfades.com 
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Local  or  Remote  Server  Management  Solutions 


ACCESS  OVER  IP  OR  LOCALLY 


TO  1000  COMPUTERS 


Connects  1,000  computers  to  multiple  user  stations 
over  IP  or  locally 

High  quality  video  up  to  1280  x  1024 
Scaling,  scrolling,  and  auto-size  features 
Secure  encrypted  operation  with  login  and  computer 
access  control 

Advanced  visual  interface  (AVI) 

No  need  to  power  down  servers  to  install 
Free  lifetime  upgrade  of  firmware 
Available  in  several  models 
Easy  to  expand 


Connects  up  to  1000  computers  to  a  KVM  station 
Models  for  4,  8,16  computers 
Advanced  visual  interface  (AVI) 

Compatible  with  Windows,  Linux,  Solaris,  and  other  O/S 

Connects  to  PS/2,  Sun,  USB,  or  serial  devices 

Converts  RS232  serial  to  VGA  and  PS/2  keyboard 

Free  lifetime  upgrade  of  firmware 

Security  features  prevent  unauthorized  access 

Full  emulation  of  keyboard  and  mouse  functions  for  automatic, 

simultaneous  booting 

Easy  to  expand 


RackVsew™ 

KVM  RACK  DRAWER  WITH  KVM  SWITCH  OPTION 


800  333  9343 

WWW.ROSE.COM 


ELECTRONICS 


SERVERS  WITHIN  YOUR  REACH 
FROM  ANYWHERE 


V,A. KVM  switch,  allows  single  or  multiple 
:-;y»pflfStatrqns.to  have  local  or  remote  access  to 
‘  'muiffple  computers  located  in  server  rooms  or 
cfesktop  regardless  of  their  platforms 
ja;^. operating  systems.  KVM  switches  have 
■;:'tB$fffi6nally  provided  cost  saving^  in  reducing 
-reffe-'sy  and  equipment  costs  while  freeing  up 


fAy- Recognized  as  the  .pioneer  of  KVM  switch 
v-V. .-^technology,  Rose  Electronics  offers  the 
^'.(.industry's  most  comprehensive  range  of 
V"’  server  management  products  such  as  KVM 
T+  ~  switches,  extenders  and  remote  access 
' .  ,  solutions.  Rose  Electronics  products  are 

known  for  their. quality,  scalability,  ease  of  use 
"  .'and  innovative  technology. 


Rose  Electronics  is  privately  held  with  world- 
headquarters  in  Houston,  Texas  and  sells  its 
•products  worldwide  through  a  large  network  of 
Resellers  and  Distributors.  Rose  has 
operations  in  the  United  Kingdom,  Spain, 
Germany,  Benelux,  Singapore  and  Australia. 


Rose  Electronics 
10707  Stancliff  Road 
Houston,  Texas  77099 


ROSE  US  +281  933  7673 

ROSE  EUROPE  +44  (0)  1264  850574 

ROSE  ASIA  +65  6324  2322 

ROSE  AUSTRALIA  +617  3388  1540 
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Introducing  the  new 
HotBrick  family  of 
firewalls  &  managed 
secure  switches... 


Call  for  more  info  (866)  468-2742 

or  visit  us  online  at  www.Hotbrlck.com 
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HotBrick 


HotBrick 


HotBrick 


are 

i/  download 


Don't  get  hacked,  get 


MlJiiEiSSK 

NetworkWorld 

THE  HUB  OF  THE  NETWORK  BUY 


MARKET 


43 


7/19/04 


-•j  -V  ■- snaas S&siirsxfc 

Remote  Reboot  Over  Telnet! 


Reboot  your  Network  Equipment  via  Telnet,  Dial-Up  and  Local  Console 


Network  equipment  sometimes  "locks-up”  requiring  a 
service  call  just  to  flip  the  power  switch  to  perform  a 
simple  reboot.  The  NPS  Network  Power  Switch  gives 
network  administrators  the  ability  to  perform  this 
function  from  anywhere  on  the  LAN/WAN,  or  if  the 
network  is  down,  to  simply  dial-in  from  a  standard 
external  modem  for  out-of-band  power  control. 

■  Eight  (8)  Individual  Outlets 

■  Dual  15-Amp  Circuits 

■  Integrated  10-BaseT  Interface 

■  RS-232  Modem  and  Console  Ports 

■  Outlet-Specific  Password  Security 

■  Network  Security  Features 

■  Power-up  Sequencing 

■  Co-Location  Features 

■  Modem  Auto-Setup  Command  Strings 


Individually 
Programmable 
Outlet  Plugs  (8) 


lOBase-T  Ethernet 
Interface 


1 9”  Rack  Brackets 
Allow  Front,  Back,  or 
Center  Mounting 


Dual  15  Amp 
Power  Circuits 


QOflkfl 


Awarded 
9  out  of  10 
By  Mark  Gibbs 
Network  World 
2/18/02 


Modem  Port  for 
Out-of-Band 
Management 


RS232 
Console  Port 


www.wti.com 


(800)  854-7226 


western  telematic  incorporated 

5  Sterling  •  Irvine  •  California  926  1  8-25  1  7 


Celebrating  our  40th 
Year  in  DataCom 


“ Keeping  the  Net.. .  Working!  ” 


Attention  Resellers! 


SECUREMATICS 

The  Right  decision  for  Security  Products 

Best  Source  for  SONICWALL 
Security  Products! 

LIMITED  TIME  OFFER! 

•  Earn  1  FREE  SonlcU  e -Training 
Class  for  every  $15K  In  SonlcWALL 
purchases  from  Securematics.” 

•  New  SonlcWALL  Resellers  will  receive  1  FREE 
SonlcU  Electronic  Training  Course  with  purchase 


of  any  Demo  Unit 


•  iMtitoOOM  may  appty. 


Securematics  Is  a  SonicWALL  Authorized  Distributor  &  Training  Partner 
To  sign  up  for  the  Medallion  Partner  Program,  please  contact  us. 

Call  -  888-746-6700  sales@securematics.com  www.securematlcs.com 
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If  it’s  on  the  N  WORLDWIDE  PROVIDER 

network,- ►  -  7  OF  NETWORK 
v^e’ve  got  it!  HARDWARE 

SINCE  1981! 

•  NetWork  Hardware 

•  Cables 


THI  NSTWORK  SPECIALISTS 

WRCAaNET 


Memory 


J 


*  Accessories 

sales6wrca.net  -  (800)699-9722x102 


Climate  Monitor 

$389 


Ethernet/Web 

Temperature 
Air  Flow 
Humidity 
Door  position 
Sound 
Light  Level 
Power 

Video  optional 
16  external  sensors 


See  it  working  at: 
http://63.237.104.17 


Rack  Mounted 

Monitor  Multiple  Cabinets 

HTML  (no  client  needed) 
SMTP  (e-mail  alerts) 
SNMP  (MIB,  Traps) 
Graphing 
Console 


O  IT  Watchdogs 

w  w  w .  ITWatchdog  s .  com 
512-257-1462 


Stop  juggling  with 
multiple  management  tools 
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Keep  IT  simple 


ManageEngine 

IJ)p  OpManager 

Network,  Systems  and  Application  Management 


Take  control  of  your  network,  systems  and  application 
infrastructure  before  it  controls  you.  OpManager  provides 
integrated  management  for  IT  infrastructure. 

Move  to  integrated  management.  Try  OpManager  today 

Available  for  Linux,  Solaris  and  Windows 


Advertising  Supplement 

IT  Careers:  The  Feds  Want  You! 


The  good  news  over  the  past  quarter  has  been  a  drop  in  job  cuts  in 
the  information  technology  world,  and  an  increase  in  hiring. 

Gaining  fewer  headlines  is  where  a  good  portion  of  information 
technology  careers  can  be  found  -  with  the  U.S.  government. 

Postings  on  the  Office  of  Personnel  Management  website  and 
usajobs.opm.gov  -  include  more  than  5,000  listings  for  jobs  that 
range  from  the  most  senior  levels  to  entry  level  positions.  In  addition, 
there's  information  on  how  to  get  scholarships  for  studies  that  will 
qualify  you  for  the  positions. 

Three  dynamics  are  driving  the  hiring  by  federal  agencies.  First  is  the 
transfer  to  E-Gov  -  a  management  initiative  to  streamline  and 
automate  everything  from  Social  Security  and  Veterans  Affairs  to  the 
business  enterprise  systems  that  drive  the  literally  hundreds  of 
departments  operated  by  the  government. 

The  second  is  the  transformation  of  the  U.S.  intelligence/security/defense  operations. 
Increasingly  the  security  and  defense  of  the  country,  from  natural  disasters  as  well  as 
outside  threats,  is  driven  by  data  gathered  by  federal  agencies. 

A  third  issue  is  the  aging  of  the  government  workforce.  According  to  an  internal  survey 
conducted  by  the  Federal  CIO  Council,  76%  of  the  federal  IT  workforce  is  over  age  40  and 
less  than  5%  is  younger  than  30;  most  have  worked  for  the  government  for  more  than  20 
years  and  plan  to  retire  in  the  next  decade. 

"Much  of  the  emphasis  on  federal  IT  jobs  is  hiring  new  entrants  from  college,"  says  Bob 
Cohen,  senior  vice  president  of  the  Information  Technology  Association  of  America,  which 
recently  completed  its  14th  annual  Federal  CIO  Survey.  The  federal  government  has 
increased  its  recruitment  efforts  at  colleges  and  universities. 


Cohen  says  that  in  the  down  cycle  of  hiring  among  technology 
companies,  the  federal  government  has  become  more  attractive  as  an 
employer.  "It's  easier  to  change  positions  from  one  federal  agency  to 
another,"  he  says.  "The  job  security  and  predictability  of  federal 
employment  has  become  much  more  appealing  to  IT  professionals." 

The  ITAA  study  found  that  the  federal  agencies  are  in  need  of  some 
fairly  specific  expertise  and  experience: 

•  Certified  program  managers; 

•  Information  security  and  authentication; 

•  Large-scale  data  management 
and  repository  development; 

•  Enterprise  software  implementation;  and 

•  Enterprise  architecture  development. 

Cohen  says  the  opportunities  aren't  second-class  offerings.  In  fact,  several  federal  agencies 
made  the  Washingtonian  magazine's  Annual  Great  Places  to  Work  list  for  the  metro  area: 
Fannie  Mae  and  Freddie  Mac  among  them.  Others  making  the  list  that  work  with  or  for  the 
government  include  Booz  Allen  Hamilton,  Number  Six  Software,  FGM  (software/systems 
engineering),  SRA  International,  Terrapin  Systems,  Acumen  Solutions,  New  Media 
Strategies,  Johns  Hopkins  University  Applied  Physics  Laboratory,  and  Mitretek  Systems. 

For  more  information  about  IT  Careers  advertising,  please  contact: 

Nancy  Percival,  Vice  President,  Recruitment  Advertising 
800.762.2977 

500  Old  Connecticut  Path,  Framingham,  MA  01701 
Produced  by  Carole  R.  Hedden 


Universal  Business  Consulting. 
Inc  has  openings  in  NewJersey 
and  nationwide  for  computer 
professionals  in  the  following 
skills: 

Java,  JSP,  JavaScript,  JDBC, 
Servlets,  Corba,  EJB,  Web- 
Logic,  WebSphere,  iPlanet,  ASP 
.Visual  Basic.COM/DCOM,  C, 
ATG  Dynamo,  Cold  Fusion, 
Oracle,  Developer  2000,  PL/ 
SQL,  SQL  Server,  Sybase,  Data 
warehousing,  Hyperion  Ess- 
base,  Hyperion  Analyzer, 
PeopleSoft,  SQR.Cognos, 
Informatica,  ABAP/4,  Legato 
Networker,  Veritas  Cluster 
Server,  Orbix  Web  Server, 
Apache,  Crystal  Reports,  TCP / 
IP,  SMTP,  LDAP,  WinRunner, 
Load  Runner,  Sun  Solaris, 
Linux,  Win  NT,  and  Unix. 

Req:  Some  positions  require  a 
Bach  Deg  w/at  least  2  yrs  exp, 
others  Mast  Deg  or  equivalent 
w /  2  yrs  exp.  For  Some  positions 
4  yrs  exp  is  accepted.  Only 
those  eligible  for  permanent 
positions  need  apply.  Must  be 
willing  to  relocate  if  necessary. 
Salary  will  depend  upon  experi¬ 
ence.  Reply  to: 
hrd@ubcincorp.com. 


Sr.  Sys.  Analyst  for  full  life  cycle 
s/w  solns.  PM  &  team  mgmt.  Du¬ 
ties:  Req  analysis,  proj  specs, 
D/B  dsgn,  resource  alloc  &  mng 
client  req  Internet  sys  solns  dev 
using  M/S  Tech  VB,  NET,  ASP- 
NET.  ASP,  JavaScript,  SQL  Srvr, 
COM/DCOM.  MTS.  XML.  Ra¬ 
tional  Rose,  ER-Win,  Win  2000  & 
Intel  based  machines;  customize 
/deploy,  upgrade  &  maint.  ebix- 
One.  ebixASP,  ebixMail,  ebix- 
Exchange  s/w  pkgs;  resource 
allocn  &  sch  CMM  levels;  update 
ebix’s  methods  &  std  &  sys 
analysis  &  r/w.  BS  in  CS  +  2  yrs 
exp  as  a  Prog  Analyst  with  exp  in 
Ebix  software  &  Internet  soln  dev 
w/  MS  tech.  Comp  salary.  Apply 
EBIX.  5  Concourse  Pkwy.  #3200, 
Atlanta  GA  30328  w/  proof  of 
perm  w/k  authzn. 


Code  SA3.  Dev  s/w  applns  w/ 
Java.  VC++,  MFC,  HTML,  ASP. 
JavaScript,  VBScript,  PL/SQL, 
JSP  &  Servlet  in  Win  NT/95;  use 
RDBM  Oracle,  Hypersonic,  My¬ 
SQL,  MSSQL  Server  &  Sybase- 
11  appln  dev  appln/web  servers 
Tomcat.  Websphere,  Weblogic, 
JBoss  for  web-based  projs; 
Case  tools  Rational  rose,  Clear 
Case,  Clear  Quest  for  procs  & 
config  mgmt.  Dev  PHIN  data 
models;  dev  test  plans  QA  procs 
for  sys  effcncy  Anlyz  info  mgmt 
&  data  reqs  from  users.  Sys  dev, 
d/zn  config  mgmt.  QA/QC;  Pres 
cncpts  Use  EDI,  HL7  in  health 
care  msging  integrn.  BS  in  Elec 
Eng  or  CS  +  2  yrs  exp. 

Code  SA.  Dev  s/w  sys  w/  VB 
6.0,  MS  Access,  VBA,  &  MS 
SQL  Server.  Utilize  MS  ActiveX, 
COM,  8J or  COM+  in  the  dev  of 
s/w  sys  for  outbreak  mgmt  & 
public  health.  Dev  plans  per 
specs  &  d/zn  logic  to  impl  comp 
prgrms,  IT  sys  &  procs  for  tech, 
admin  &  IM  funct/ops.  Dev  test 
plans,  QA  procs  for  sys  effecncy. 
Analyze  info  mgmt  &  data  reqs 
from  users.  Sys  dev,  d/zn  config 
mgmt.  QA/QC;  Present  con¬ 
cepts.  BS  in  Comp  Applns  +  2 
yrs  of  exp. 

Comp  salary.  Apply  w/code  to 
BCA,  2002  Perimeter  Summit 
Blvd.,  #880,  Atlanta,  GA  30319 
w/prf  of  wk  auth. 


Knowledge  Engineers  need¬ 
ed.  Seeking  cand  possessing 
BS  or  equiv  and  rel  work  exp. 
Part  of  rel.  work  exp  must 
include  2  years  working  with 
ART'Enterprise  Artificial  Intel¬ 
ligence  and  J2EE.  Duties 
include:  Analyze,  evaluate 
and  devise  comp  programs 
and  systems;  Integrate  amd 
implement  Artificial  Intelli¬ 
gence  expert  system.  Travel/ 
relocation  may  be  required. 
Mail  resume,  refs  and  salary 
reqs  to:  Mindbox,  LLC,  300 
Drake's  Landing,  Suite  #155, 
Greenbrae,  CA  94914. 


Bioinformatics  Specialist  to 
develop,  modify,  and  implement 
unique  web-based  oligo  analysis 
management  systems  to  allow 
end  users  to  modify  target 
sequence  identification,  oligo 
sequence  design,  and  multiplex 
functions  design  such  as  multi¬ 
plex  PCR,  multiplex  probe,  and 
multiplex  oligo  arrays  for  adapta¬ 
tion  to  commercialize  data  man¬ 
agement  solutions  for  microas¬ 
say  data.  Develops  appropriate 
assay  specific  design  sequence 
algorithms  to  insure  proper  soft¬ 
ware  development  and  modifica¬ 
tion  of  end  users  molecular  diag¬ 
nostics  purposes.  Uses  various 
bioinformatics  and  database 
software  such  as  Bioperl,  Perl, 
Java,  Shell  Script,  MySQL, 
ArrayWoRX,  NIS2000,  Eclipse, 
Emacs,  Vi  and  writing  of  Perl 
scripts  to  import  XML  version  of 
NCBI  SNP  map  information  in 
performance  of  duties. 
Requires  Bachelor's  Degree  in 
Computer  Science  and  one  year 
direct  experience.  Send 
resumes  only,  no  calls,  to: 
Ramesh  Ramakrishnan,  4088 
Commercial  Ave,  Northbrook,  IL 
60062. 


Regional  Manager  (Denver,  CO) 
-  Lead  customer  engagements  & 
business  development  of  televi¬ 
sion  broadcast  solutions 
throughout  Latin  America. 
Manage  life  cycle  of  TV  automa¬ 
tion  projects  from  proposal 
design  to  hand-off  to  customer 
support.  BS  Comp.  Sci,  Eng,  or 
related  +  at  least  4  yrs  manage¬ 
ment  exp.  Apply  by  mail  only  by 
sending  cover  Itr  &  resume  to 
Jonathan  Kohn,  Aveco 
Americas,  Inc,  468  Beacon 
Street,  Suite  A,  Boston,  MA 
02115.  No  calls. 


Computer  Systems  Analyst, 
Wachovia  Corp.,  Los  Angeles, 
CA.  Resp.  for  architectural 
design  and  programming  of  web 
based  reporting  solution.  Pos. 
reqs.  BA  in  Eng.  or  Comp. 
Science  and  2  yrs.  exp.  in  pos. 
or  as  Programmer  Analyst.  The 
2  yrs  of  reqd.  exp.  must  incl. 
developing  financial  perfor¬ 
mance  and  accounting  metrics 
for  securities  lending  programs, 
developing  reports  and  applica¬ 
tion  user  interface  using 
.Net/Crystal,  Interop,  and  Report 
Builder  (or  similar),  using  ratio¬ 
nal  unified  process  development 
methodology  utilizing  unified 
modeling  language  and  data¬ 
base  design  tools,  programming 
Ntier  applications  using  .NET 
architecture  and  integrating 
financial  data  into  custom  finan¬ 
cial  applications.  40hrs/wk,  M- 
F.  Send  resume  &  cvr.  letter  to 
Armeet  Sandhu,  11440  San 
Vicente  Blvd.,  3rd  Floor,  Los 
Angeles,  CA  90049. 


Sr  Sys  Analyst  to  d/zn  s/w  sys  w/ 
UML/Rational  Rose  &  Object 
Oriented  Method.  D/zn  /dev/impl 
s/w  appl  using  mumps,  Java, 
C++,  VC++,  &  J2EE  Tech  like 
STRUTS  1.1  Framework,  Serv¬ 
lets,  JSTL,  EJB  with  Weblogic 
Appl  Server,  JBoss  Appl  Server 
3.2.3,  Iplant  Appl  Server  6.0, 
Netscape  Appl  Server  4.0,  Web¬ 
logic  RMI,  JNDI,  Java  Swing. 
JMS-MQ  Series,  JNI,  RMI.  XML, 
XSLT,  HTML,  JavaScript,  SQL, 
PL/SQL,  Ant  1.8.1,  Log4J,  Ra¬ 
tional  Rose,  &  JBuilder.  Gather 
user  req;  dev  emulation  inter¬ 
faces  for  legacy  sys  w/  C++  & 
stored  procs  for  SQL  Server. 
D/zn  D/B  tables;  Sch  timeline  for 
modules  &  assign  tasks.  Be  cer¬ 
tified  as  Appl  Developer.  BS 
Electronics  or  CS  +  2  yr  exp, 
Comp  salary.  Apply  to  Netserv  - 
Code  AS,  6580  Jimmy  Carter 
Blvd.,  Norcross,  GA  30071  with 
proof  of  perm  w/k  authzn. 


Oracle  Applications  Devel¬ 
oper:  Utilizes  knowledge  of 
Oracle  11  and  1 1  i,  Sun/Solaris, 
and  Oracle  RDBMS  8  to  design 
and  develop  appropriate  techni¬ 
cal  platforms  in  support  of  spe¬ 
cific  business  requirements; 
Comprehends  complex  configu¬ 
rations,  structure  and  relation¬ 
ships,  performance  and  scalabil¬ 
ity;  Formulates  policies  and 
standards  to  ensure  integration 
and  flexibility  (change,  emerging 
technology,  etc.)  and  provides 
product  recommendations. 
Requires  a  U.S.  or  foreign 
Bachelor's  degree  in  Comp. 
Sci.,  Engineering,  Comp.  Engg., 
Systems  Mgmt.,  the  Hard 
Sciences  or  a  closely  related 
field  and  at  least  3  yrs.  of  work 
exp.  in  this  or  a  related  position, 
including  Consultant,  System 
Developer,  Software  Engineer, 
etc.  Position  is  in  Webster,  NY, 
but  may  require  travel  and/or 
relocation  within  the  U.S.  40 
hrs/wk.  8:00  am  -  5:00  pm. 
$79,040/yr.  Interested  parties 
should  submit  resumes  to:  PA 
Dept.  Of  Labor  &  Industry,  235 
W.  Chelten  Ave.,  Philadelphia, 
PA  19144.  JO#  WEB  431477. 


Seeking  qualified  applicants  for 
the  following  positions  in 
Collierville.  TN:  Senior  Prog¬ 
rammer  Analyst.  Formulate/ 
define  functional  requirements 
and  documentation  based  on 
accepted  user  criteria.  Req¬ 
uirements:  Bachelor's  degree  or 
equivalent*  in  computer  science, 
engineering,  MIS,  computer 
information  systems  or  related 
field  plus  5  years  of  experience 
in  systems/applications  develop¬ 
ment.  Experience  with  J2EE, 
Weblogic,  and  Oracle  database 
technology  also  required. 
‘Master's  degree  in  appropriate 
field  will  offset  2  years  of  gener¬ 
al  experience.  Submit  resumes 
to  Cynthia  Thompson,  FedEx 
Corporate  Services,  90  FedEx 
Parkway,  2nd  Floor  Horizontal, 
Collierville,  TN  38017.  EOE 
M/F/DA/. 


Sr.  Software  Engineer,  Wach¬ 
ovia  Corp.,  Charlotte,  NC. 
Design  and  develop  financial 
and  banking  applications  using 
client  server  and  Web  technolo¬ 
gies  using  Java,  J2EE,  JDBC, 
HTML,  javascript,  VBScript, 
ASP,  LDAP,  C++  COM  objects  to 
interface  with  CICS  listener. 
Reqs.  BA  and  3  yrs.  exp.  in  pos. 
or  as  a  Software  Eng. or 
Developer.  The  3  yrs.  must 
incl.  designing  and  developing 
web  applications  using  Java, 
J2EE  (EJBs,  Servlets,  JSPs), 
JDBC,  SQL,  HTML  on  UNIX, 
Solaris  and  AIX  platforms  and 
must  have  incl.  installing  and 
tuning  application  servers,  web- 
servers  and  directory  servers 
(LDAP)  and  work  with  stored 
procedures,  functions  using 
ORACLE,  SYBASE,  shell  scripts 
and  PERL  scripts  on  SOLARIS, 
Unix  and  AIX  platforms.  M-F,  8- 
5.  Send  resume  to  Babette 
Robbins  c/oAmy  Kee,  Wachovia 
Corp.,  1525  West  W.T.  Harris 
Blvd.,  3A1 ,  Charlotte,  NC 
28262.  No  phone  calls. 


Sfwr  Eng  to  d/zn  s/w  applns. 
Dev  RDBMS  &  GUI  appl.  w/ 
Oracle,  DB2  &  M/F  sys  as  D/B  & 
Lotus  Notes  for  dev  Intranet 
appl.  Data  Model  w/  Erwin  & 
Rational  Rose.  W/k  as  fnctnl  & 
tech  cnslt  for  OLTP/  ERP.  Data 
warehouse  arch  to  d/zn  DSS, 
OLAP,  ODS,  Data  Marts  and 
Data  w/h.  W/k  w/  Oracle 
PL/SQL,  Informatica,  PwrCtr, 
PwrMrt,  Cognos  Pwrplay  and 
Impromptu,  Brio,  Hyperion, 
Essbase  and  Business  Obj.  W/k 
with  data  sources  from  OLTP 
applns  MVS,  SAP,  &  Oracle 
D/zn  &  dev  ETL  method  for  data 
w/h.  tune  ETL  load  process  & 
dev  rpts.  Data  model  &  tuning. 
Shell  scripts  for  data  load  &  shell 
prgms  in  Unix.  BS  in  Eng  +  2  yrs 
exp.  Comp,  salary  Apply: 
Netserv,  6580  Jimmy  Carter 
Blvd.,  Norcross,  GA  30071  w/ 
proof  of  w/k  auth. 
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it  careers.com 


it  careers 


Responsible  for  programming, 
development,  analysis,  imple¬ 
mentation  of  enterprise  software 
applications  to  meet  client's 
needs  and  specifications  on 
operating  system  platforms. 
Need  at  least  lyear  of  experi¬ 
ence  in  MQ  Series,  and 
Messaging,  Sybase,  DB2-UDB 
and  Java /  J2EE  technologies. 
Checkable  references  required. 
1  Yr.  experience  withMaster's 
Degree  or  equivalent  in  Com¬ 
puter  Science,  Engineering  (any 
field),  Math.  Must  be  available 
24/7  to  provide  emergency  tech¬ 
nical  support.  Will  be  paid  if  ser¬ 
vices  are  used  as  per  call  basis. 
Salary  $78,300/-year.  Send  this 
ad  and2  copiesyour  resume  /let¬ 
ter  of  qualification  to:  Job  order 
2004-576,  P.O.  Box  989, 
Concord,  NH  03307-0989 


itcareers.com 


can  solve  the 


labyrinth  of 


job  hunting  by 


matching  the 


right  IT  skills 


with  the  right 


IT  position. 


Find  out  more 


at: 


www.itcareers.com 


SW  Dev  Engineer  -  Design, 
develop,  code,  test  &  debug  new 
SW  or  make  significant 
enhancements  to  existing  SW 
using  Lotus  Notes/Domino,  VB, 
C,  Oracle  &  Javascript.  Develop 
solutions  across  many  disci¬ 
plines.  Apply  principles,  theories 
&  concepts  &  use  methodolo¬ 
gies,  tools,  documentation 
processes  &  test  procedures  to 
complete  projects.  Work  with 
customers  to  gather  complex  & 
detailed  system  requirements. 
Design  &  evaluate  application 
architecture  &  code.  Train  peers 
&  subordinates  in  software 
development  lifecycle  &  techni¬ 
cal  solutions.  BS  Comp  Sci, 
Eng.  or  related  or  equivalent  +  2 
yrs  SW  Eng/Analyst  or 
Prog/Analyst  and  working  or 
theoretical  knowedge  of  Lotus 
Notes/Domino,  VB,  C,  Oracle.  & 
Javascript.  $79k/yr.  M-F.  8-5. 
Denver,  CO  Must  have  proof  of 
legal  authority  to  work  perma¬ 
nently  in  the  US.  Application  by 
resume  only  to  Workforce 
Development  Programs,  PO 
Box  46547,  Denver,  CO  80202. 
Ref.  job#CO5083395. 


Software  Engineers,  Systems  to 
research,  design,  develop,  im¬ 
plement  software  solutions  for 
clients  using  LabVIEW,  C.  C++, 
VB,  SQL  Server,  Database  con¬ 
nectivity,  PXI  modules,  etc. 
under  Windows  envir;  interact 
with  clients  to  write  system 
specs  and  perform  study,  analy¬ 
sis  and  design  of  systems  for 
automated  test  reqs;  provide  on¬ 
site  implementation/technical 
support.  Require:  MS  or  foreign 
equiv.  in  CS/Engg.  (any  branch) 
&  1  yr  exp  in  IT.  Competitive 
salary.  F/T.  Resume:  HR,  V  I 
Engineering,  Inc.,  37800  Hills 
Tech  Drive  Farmington  Hills,  Ml 
USA  48331. 


Engineer  -  EMC  Corporation 
(Documentum  Division)  has 
an  opening  for  Senior  Con¬ 
sultant  in  our  Chicago,  IL 
office.  Requirements:  BS  in 
CS  or  Engineering  plus  4 
years  experience  in  Soft¬ 
ware  Design/Development. 
Please  e-mail  resume  to: 
Kristy  Zimmerman  fkristv. 
zimmerman@documentum 

.com).  Please  reference: 
RO/TE. 


Prog.  Analysts  to  analyze,  de¬ 
sign/develop  s/w  appls  using 
Java,  JavaScript,  VBScript,  ASP, 
HTML,  Weblogic,  Oracle,  SQL, 
COBOL,  DB2,  CICS  under  Win¬ 
dows,  UNIX  &  MVS  OS;  perform 
unit,  functional,  integration,  re¬ 
gression  and  systems  level  test¬ 
ing;  analyze  user  reqs,  prepare 
design  documents;  develop  & 
enhance  online  &  batch  pro¬ 
grams;  implement,  install,  test, 
debug  and  modify  new/existing 
appls.  Require:  BS  or  foreign 
equiv.  in  CS/Engg.  (any  branch) 
&  2yrs  exp.  in  IT.  Travel  in¬ 
volved.  High  Salary.  F/T.  Resu¬ 
mes  to:  HR,  Global  IT  Solutions 
USI,  Inc.,  600  Stevens  Port 
Drive,  Ste  125,  Dakota  Dunes, 
SD  57049. 


Software  Quality 
Assurance  Engineers 
Exp.  In  test  planning,  test  suite 
devlpt,  test  exec.  &  defect 
reporting  &  testing  s/w  applns.  in 
Windows, Unix  or  Mainframe 
envrmt  ERP/CRM/s/w  apples  in 
banking, fin/enterprise  svees. 
Working  knowl.  of  industry 
stndrd  tools  in  test  automation  & 
defect  tracking  tools.  Req's  Min. 
BS  +  1  yr  exp.  Level  1),  BS  +3 
yrs  or  MS  +  1  yr.  Level  2).  Send 
resume  &  cover  letter  to  RelQ 
Software,lnc;3080  Olcott  St, 
Suite  100-B  Santa  Clara,  CA- 
94054  worksite  in  Santa  Clara, 
CA  and  various  unanticipated 
locations  throughout  the  US 


Principal  Information  Systems 
Analyst,  Colorado  Springs,  CO: 
Develop  8  support  PeopleSoft 
applications  for  Payroll,  Benefits 
Administrations  and  Human 
Resources  Management  Syst¬ 
ems  (HRMS).  Lead  PeopleSoft 
systems  analysis  programming 
&  user  support  team.  Act  as 
team  lead  of  6  employees, 
including  Programmers,  Data¬ 
base  Administrators,  and 
Systems  Analysts.  Min.  Req.: 
BA  or  foreign  equiv.  +  2yrs.  exp 
w/Peoplesoft  HR  apps. 
upgrades  &  programming  in 
SQR  language.  $72,000/yr.  40 
hrs./wk,  M-F  8:00am-5:00pm. 
Must  have  proof  of  legal  author¬ 
ity  to  work  in  U.S.  Apply  by 
resume  only  to:  Workforce 
Development  Programs,  PO 
Box  46547  Denver,  CO  80202 
Job  Order:  #CQ5084220. 


Senior  Programmer  Analysts  to 
lead  teamd  to  analyze,  design, 
develop  and  implement  appls 
using  SAP,  C,  J2EE,  JSP,  RMI, 
Websphere,  Weblogic,  and  EAI 
tools  like  Mercator,  Sybase, 
Vitria,  Webmethods,  etc  under 
Windows/Unix  OS;  responsible 
for  data  modeling,  gap  analysis, 
etc;  involve  in  system/business 
analysis;  develop  functional 
specs  based  on  business  reqs; 
design,  develop  interfaces  and 
perform  integration  of  various 
modules;  test  team  members/ 
train  end  users.  Require:  BS  or 
foreign  equiv  in  CS/Engg.  (any 
branch)  &  3  yrs  exp  in  the  IT 
field.  Travel  involved.  F/T  posi¬ 
tion.  competitive  salary.  Resume 
to:  HR,  Koneru  Software 
Services,  333  Swanson  Dr.,  Ste 
124,  Lawrenceville,  GA  30043. 


Developers/Prog  Anlysts  for  var¬ 
ious  unspecified  locations. 
Analyze,  design  &  develop  com¬ 
puter  applications  &  programs 
using  Business  Objects, 
Business  Objects  Designer, 
Weblntelligence,  Weblogic, 
Webl  SDK,  Java.  JSP,  HTML, 
Informatica,  Oracle,  SQL  Server, 
SQL,  PL/SQL  and  T-SQL  in  a 
Windows  &  Unix  environment. 
Bach  degree  or  its  equiv  in 
Comp  Sci,  Engg,  Sci,  or  its 
equiv.  &  two  years  exp  in  the  job 
duties.  Respond  to  Nihaki 
Systems,  Inc.,  346  Georges 
Road,  Suite  1,  Dayton,  NJ 
08819.  Fax.  732-438-6973,  e- 
mail:  info@nihaki.com. 


IT  Product  Business  Mgr.,  AVP, 
Baltimore,  MD,  Wachovia.  Serve 
as  IT  tech,  coordinator  for  trad¬ 
ing  floor  appls.  Reqs.  Reqs. 
MA  in  MIS  and  3  yrs.  exp.  in  pos 
off.  or  as  a  Help  Desk  Analyst  or 
IT  Tech..  The  3  yrs.  reqd  exp. 
must  have  incl.  providing  sup¬ 
port  to  trading  floor  users  w /  avg. 
volume  of  trades  of  50  million 
shares  per  day  &  must  incl.  work 
w/  trading  floor  appl.  such  as 
Brass,  NASDAQ,  Reuters-Triad 
and  work  with  STP  and  evaluat¬ 
ing  user  rqmts.  and  making  recs. 
on  solutions.  40  hrs/week, 
send  resume  &  cvr.  Itr.  to  Geri 
Ann  Henderson,  Wachovia 
Corp.,  401  S.  Tryon  St.,  27th 
Floor,  Charlotte,  NC  28288.  No 
Phone  Calls  Please. 


Quality  Eng.  wanted  by 
company  engaged  in 
graphics  and  multimedia 
technology  design,  manu¬ 
facturing  and  marketing. 
Requires  Bach,  in  CS  or  EE 
plus  3  yrs  exp.  including 
min.  2  yrs.  audio/video  soft¬ 
ware,  Reply  to  ATI 
Research,  Inc.  H  R.  Dept., 
Attn:  K.B.,  62  Forest  Street, 
Marlborough,  MA01752. 


Deployment  Engineer  to  use 
telecom,  netwrk,  call  hndlng 
anlys  &  billing  exp  to  anlyz  comp 
sys  &  prvde  instal  of  company's 
wireless  comm  S/W  apps  &  sys 
on  client  sites;  install,  upgrd.  & 
trblshoot  S/W  apps  &  setup 
comm  cnnctvty  b/w  various  3rd 
party  H/W  sys;  provide  tech  & 
bus  comp  sys  input  for  clnt  & 
enduser;  train  users  onsite  rgrd- 
ng  comp  S/W  apps.  Must  have 
a  Bach  or  equiv  in  CS  or  any 
eng  degree;  2  yrs  telecom  & 
ntwrk  exp  using  Unix  &  Oracle  or 
sim  RDB  sys;  hands-on  exp  in 
call  hndlng  anlys  &  billing; 
demnstrtd  knwldg  of  SS7  ANSI 
TCAP,  SS7  ITU  TCAP,  SCCP,  & 
MTP;  &,  exp  w /  at  1st  2  wireless 
protocol,  inc  ISUP,  IS826,  and 
IS41EE.  Contact  Lightbridge, 
Inc.,  320  Interlocken  Pkwy, 
Broomfield,  CO  80021  (Job 
#1465.0061). 


Sr.  Web  Developer,  Wachovia 
Corp.,  Charlotte,  NC.  Evaluate 
web  reqs.  or  tech,  issues.  Reqs. 
BA  in  Eng.  or  Comp.  Science 
and  4  yrs  exp.  in  pos.  or  as  Sen¬ 
ior  Prog.  Analyst  or  Computer 
Progr.  The  4  yrs.  must  incl. 
analysis  and  design  of  software 
appls.  and  databases  using 
server-side  prog,  languages 
such  as  ASP  and  JSP,  STRUTS, 
PL/SQL  and  work  w/  a  content 
mgmt.  system  software  such  as 
Vignette's  (TCL)  and  work  inte¬ 
grating  Vignette  (or  similar  soft¬ 
ware  pkg.)  with  a  web-based 
XML  editor  such  as  eWebEdit- 
Pro+XML.  2  yrs.  of  the  req.  exp. 
must  incl.  work  with  XML  and 
stored  procedures,  database 
dvlp.  using  Oracle  or  a  sim. 
database  mgmt.  software.  M-F, 
8-5,  Send  resume  to  Jane 
Higgins,  Wachovia  Corp.,  401  S. 
Tryon  Street,  27th  Floor, 
Charlotte,  NC  28288-0475.  No 
phone  calls. 


COMPUTER  SYSTEMS 
ANALYST  sought  by  Valet 
parking  services  to  program 
administrative  and  payroll 
systems  and  update  com¬ 
puter  hardware,  software 
and  network.  Bach  Rqrd  or 
equiv/combi  of  educ  +  exp. 
Exp  rqrd,  Comp  Salary. 
Send  resume  to  Valet  Plus 
Parking  Systems,  Inc.,  161 
Aragon  Ave.,  Coral  Gables, 
FL  33134  or  Fax  305-461- 
3303 


Intelligium,  LLC  seeks  Syst¬ 
ems  Mgmt  Consultants  to 
design,  dvlp,  implmt  and 
enhance  scalable  solns  using 
Tivolisuite  to  automate  &  man¬ 
age  Systems  &  Networks  con¬ 
sisting  of  AIX,  Solaris,  Linux  & 
Win  NT  responsibilities  also 
include,  establishing  Tivoliin 
frastructure.  upgrading  Tivoli 
Framework  and  related  func¬ 
tions.  BS  or  equiv  in  CS,  Info 
Sys  or  rel  field  &  2  yr  relv  exp. 
Multiple  positions  in  Alpharetta  & 
other  locations.  Apply:  HR, 
Intelligium,  LLC,  5930 
Barrington  Ln,  Alpharetta, 
GA30005.  Fax  678-530-1048 


Programmer  Analysts 
(2  positions) 

Programmer  Analyst  w/exp  in 
ASP.  XML,  XSL,  SQL  Server, 
RoboHTML,  ActiveX,  COM+  & 
VB  REF  AD#1 

Programmer  Analyst,  Sr.  w/exp 
in  Java,  J2SE,  J2EE,  HTML, 
Javascript,  Weblogic  Server, 
Apache  Web  Server,  Oracle, 
TogetherSoft,  Jakarta's  Ant  & 
CVS/WinCVS.  Customize  BEA's 
Personalization/Portal  Server  & 
Interwoven's  Teamsite.  REF 
AD#2 

Mail  Resumes  to: 

EBusinesscorp  Inc.,  209  West 
Central  St,  Ste  106,  Natick,  MA 
01760.  PLS  MENTION  REF# 
WHEN  APPLYING 


Jr.  Programmers,  Programmers, 
Software  Engineers  &  DBAs: 
Design,  develop,  test  and  imple¬ 
ment  specialized  software  apps. 
in  (a)  Oracle  Financials  & 
Manufacturing  111  &  rel.  tools, 
Erwin,  Cognos  Suite,  Business 
Objects,  MF  Cobol  &  rel.  tech.; 
(b)  SQL  DBA,  Unix  Admin.,  VB, 
Sybase,  Cobol,  C,  Cold  Fusion 
&  rel.  tech.;  (c)  J2EE  &  rel.  tech., 
Rational  ClearCase.  CORBA, 
MQSeries  &  rel.  tools;  (d) 
PeopleSoft  HRMS  (HR.  Payroll 
and  Benefits  Administration) 
Application  Engine,  SQR,  Cobol, 
DB2,  CICS,  nVision,  Crystal 
Reports  &  rel.  tools;  (e)  Java  & 
rel.  tools,  CORBA,  Sybase, 
Swing,  Rational  Tools  &  rel 
tech,  (f)  Oracle  Database  Admin 
in  Oracle  11i,  Oracle  Enterprise 
Manager.  Solaris  AIX,  VB.  C++, 
SQL’Plus  &  rel.  tools;  (g)  Cold 
Fusion  &  rel.  tools,  ASP,  XML, 
DHTML,  Crystal  Reports,  Java, 
VB,  DCOM,  MS  SQL,  Oracle  8i 
&  rel.  tools;  (h)  Oracle  Financials 
&  PeopleSoft,  Tuxedo,  Dev¬ 
eloper  /  Designer  2000  &  rel. 
tools;  (i)  Hyperion  Essbase 
Apps.  &  rel.  tools;  (j)  Oracle, 
Peoplesoft,  ASP,  Java  &  rel. 
tools,  SQA  Robot,  Mercury  Test 
Director,  Silk  &  rel.  tools;  (k) 
JDK,  ASP,  CORBA,  Oracle,  SQL 
Server,  Linux,  VB,  HTML  &  rel. 
tools;  (I)  SAP-SEM,  SAP  R/3, 
SAP  BW,  ABAP/4,  SAP  (SD, 
MM.  PP,  FICO)  &  rel.  tech,  (m) 
Peoplesoft  Financials  (AP,  AR, 
GL,  FA)  &  rel.  tools.  US  Workers 
only.  Consulting  positions  req¬ 
uiring  travel.  Prevailing  wage/ 
benefits.  Send  resume  to  HR, 
SSG,  3300  Buckeye  Road,  Suite 
555,  Atlanta,  GA  30341,  identify¬ 
ing  interested  position(s).  No 
Phone  calls  please. 


Prog/Analysts  to  analyze,  de¬ 
sign  software  appls  using  C, 
C++,  Compile  Tools,  Oracle, 
lnformix-4GL,  Informix  Online, 
SQL  Server,  etc.  under  Win¬ 
dows,  UNIX  OSs;  design  APIs 
for  backup/recovery  framework; 
provide  on  site  maintenance 
support  such  as  debugging, 
modifications,  fine  tuning  &  code 
optimization.  Require:  BS  or  for¬ 
eign  equiv.  in  CS/Engg. (any 
branch)  &  2  yrs  of  exp.  in  IT.  F/T. 
competitive  salary.  Travel  in¬ 
volved.  Resumes  to:  HR, 
Semafor  Technologies,  Inc., 
3300,  Holcomb  Bridge  Road, 
Ste  212,  Norcross,  GA  30092. 


Sr.  Prog  Analysts  to  manage 
teams  to  analyze,  design,  devel¬ 
op  appls  in  client  server/3-tier 
architecture  using  C,  C++, 
Tuxedo,  Btrieve,  MQ  Series, 
Oracle,  Sybase,  Socket  API. 
COBOL,  etc.  under  Windows, 
Unix  OS;  analyze  business  pro¬ 
cesses  to  determine  reqs;  imple¬ 
ment  appls  and  perform  strate¬ 
gic  planning/operations  support; 
provide  end  user  training.  Re¬ 
quire  BS  or  foreign  equiv.  in 
CS/Engg.  (any  branch)  &  3  yrs 
exp.  in  IT.  Competitive  salary, 
F/T,  travel  involved.  Resume  to 
HR,  Ordusion  Technologies, 
Inc.,  3883  Rogers  Bridge  Road, 
Suite  504,  Duluth,  GA 


iKuni,  Inc.  currently  has  an 
opportunity  in  Palo  Alto, 
CA  for  a  Software  Engin¬ 
eer  (Artificial  Intelligence 
Engineer)  position.  Req's 
Ph.D.+  3  yrs.  of  exp. 
applying  Al  techniques  to 
real-time  games. 

You  may  send  a  resume  to 
iKuni,  Inc.  3400  Hillview 
Ave,  Bldg.  5,  Palo  Alto,  CA 
94304. 


Jr.  Programmers,  Programmers, 
Software  Engineers  &  DBAs: 
Design,  develop,  test  and  imple¬ 
ment  specialized  software  apps. 
in  (a)  Oracle  Financials  & 
Manufacturing  1 1  i  &  rel.  tools. 
Erwin,  Cognos  Suite,  Business 
Objects,  MF  Cobol  &  rel.  tech.; 
(b)  SQL  DBA,  Unix  Admin.,  VB. 
Sybase,  Cobol.  C,  Cold  Fusion 
&  rel.  tech.;  (c)  J2EE  &  rel.  tech.. 
Rational  ClearCase,  CORBA, 
MQSeries  &  rel.  tools;  (d) 
PeopleSoft  HRMS  (HR,  Payroll 
and  Benefits  Administration) 
Application  Engine,  SQR,  Cobol, 
DB2,  CICS,  nVision,  Crystal 
Reports  &  rel.  tools;  (e)  Java  & 
rel.  tools,  CORBA,  Sybase, 
Swing,  Rational  Tools  &  rel. 
tech,  (f)  Oracle  Database  Admin, 
in  Oracle  11i,  Oracle  Enterprise 
Manager,  Solaris  AIX,  VB,  C++, 
SQL'Plus  &  rel.  tools;  (g)  Cold 
Fusion  &  rel.  tools,  ASP,  XML, 
DHTML,  Crystal  Reports,  Java, 
VB.  DCOM,  MS  SQL,  Oracle  8i 
&  rel.  tools;  (h)  Oracle  Financials 
&  PeopleSoft.  Tuxedo,  Dev¬ 
eloper  /  Designer  2000  &  rel. 
tools;  (i)  Hyperion  Essbase 
Apps.  &  rel.  tools;  (j)  Oracle, 
Peoplesoft,  ASP,  Java  &  rel. 
tools,  SQA  Robot,  Mercury  Test 
Director,  Silk  &  rel.  tools;  (k) 
JDK,  ASP,  CORBA,  Oracle,  SQL 
Server,  Linux.  VB,  HTML  &  rel. 
tools;  (I)  SAP-SEM,  SAP  R/3, 
SAP  BW,  ABAP/4,  SAP  (SD, 
MM,  PP,  FICO)  &  rel.  tech,  (m) 
Peoplesoft  Financials  (AP,  AR, 
GL,  FA)  &  rel.  tools.  US  Workers 
only.  Consulting  positions  req¬ 
uiring  travel.  Prevailing  wage/ 
benefits.  Send  resume  to  HR, 
Prosoft  Technologies,  Inc.,  3300 
Buckeye  Road,  Suite  379, 
Atlanta,  GA  30341,  identifying 
interested  position(s).  No 
Phone  calls  please. 


Prog.  Analysts  to  analyze,  de¬ 
sign,  develop,  implement  CRM 
apps  using  Java,  Java  Script, 
VB,  VB  Script.  ASP,  SQL  Server, 
Oracle,  Clarify  Suite  of  Products, 
XML,  Visual  Source  Safe  on 
Windows  &  UNIX  OS;  work  with 
business  analysts  to  map  reqs 
for  Clarify  Data  Model;  involve  in 
customization/implementation  of 
Clear  Support  appls;  create, 
execute  batch  programs;  test, 
debug,  modify  existing  software. 
Require:  BS  or  foreign  equiv.  in 
CS/Engg. (any  branch)  &  2  yrs  of 
exp  in  IT.  F/T.  Travel  involved. 
Competitive  salary.  Resume  to: 
HR,  ABZ  Consulting,  Inc.,  2600 
Century  Parkway,  Ste  100, 
Atlanta,  GA  30345. 


Software  Engineer  (with 
Bachelors  degree  and  3  years 
experience)  -  Job  Entails  and 
requires  experience  in  design 
and  development  of  applications 
using  C,  C++,  Informix,  Network 
programming,  Sockets,  X- 
Windows/Motif,  AWK,  PERL. 
Lotus  Notes,  Rational  Rose  and 
Unix.  Relocation  within  USA 
Possible.  Attractive  compensa¬ 
tion  package.  Send  resume  to 
Bridget  Piraino,  Asset  Control 
Systems,  Inc.,  One  Rockefeller 
Plaza.  Suite  1420,  14th  Floor, 
New  York,  NY  10020. 


System  Administrators  to  install, 
maintain,  administer  Windows, 
Linux,  Solaris  OS;  install,  main¬ 
tain  Web/Mailing  Servers;  plan, 
maintain,  troubleshoot  LAN/ 
WAN;  maintain  backups  &  pro¬ 
vide  hardware/software  support 
for  users;  create,  update  user 
accounts;  evaluate  new/existing 
systems,  recommend  future  IT 
strategies.  Require:  BS  or  for¬ 
eign  equiv.  in  CS/Engineering 
(any  branch)  and  two  yrs  exp  in 
job  offered  MS  of  foreign  equiv 
in  one  of  the  above  fields  will  be 
accepted  in  lieu  of  BS  &  2  yrs 
exp  F/T.  Travel  Involved.  High 
Salary  Resumes  to:  HR,  Global 
IT  Solutions  USI.  Inc.,  600 
Stevens  Port  Drive,  Ste  125, 
Dakota  Dunes.  SD  57049 
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Consultant 

(Glen  Mills,  PA  and  other  loca¬ 
tions  throughout  the  United 
States).  Responsible  for  the 
implementation  of  Oracle  ERP 
(Enterprise  Resource  Planning), 
focusing  on  CRM  (Customer 
Relationship  Management)  for 
business  clients.  Design  busi¬ 
ness  processes  and  systems 
utilizing  Oracle  applications 
including  Oracle  Financial 
Applications,  Oracle  Supply 
Chain  Applications,  and  Oracle 
CRM  Applications.  Responsible 
for  the  implementation  of  Oracle 
11  i  involving  the  design,  devel¬ 
opment,  and  implementation  of 
Service  and  Sale  modules,  as 
well  as  the  integration  of 
Accounts  Receivable  and  Order 
Management  modules.  Conduct 
requirements  gather,  gap  analy¬ 
sis,  configuration  of  applications, 
and  technical  and  functional 
analysis  for  customizations. 
Engage  in  the  development  and 
execution  of  unit  and  integration 
testing  scnpts  for  the  applica¬ 
tions  being  implemented. 
Provide  go-live  production  sup¬ 
port  by  resolving  application 
issues.  Utilize  PL/SQL  and 
Oracle  Report  Developer  6i  to 
design  and  develop  custom 
reports.  Migrate  setups  and  exe¬ 
cute  testing  of  software  applica¬ 
tions  using  Kintana. 

Salary  $74,752/year.  Mon.-Fri. 
9:00am-5:00pm.  The  position 
requires  a  Bachelor's  degree  in 
Computer  Science,  Mathema¬ 
tics,  Management  Information 
Systems,  Engineering  or 
Business  Administration  +  2 
years  experience  in  the  job 
offered  or  2  years  of  experience 
as  a  Consultant,  Systems 
Analyst  or  Technical  Associate. 
Related  experience  must 
include  at  least  1  year  of  experi¬ 
ence  in  Oracle  ERP  (Enterprise 
Resource  Planning),  Oracle 
Financials  Applications  including 
Accounts  Receivable.  Oracle 
Supply  Chain  Applications 
including  Order  Management, 
Oracle  CRM  (Customer 
Relationship  Management) 
Applications  including  Service 
and  Sales,  PL/SQL,  Oracle 
Report  Developer  6i  and 
Kintana. 

Please  send  your  resume,  refer¬ 
encing  Job  Order  Number  WEB 
433936  to:  PA  CareerLink,  FLC 
Unit,  235  W.  Chelten  Ave., 
Philadelphia.  PA  19144.  EOE. 


Software  Developer  sought  by 
software  development  and  data¬ 
base  management  company  in 
Longmont,  CO  to  work  in  Lisle, 
IL  and  other  unanticipated  job 
sites  in  the  US.  Design  and 
develop  computer  software 
applications  for  company's 
emergency  response  call  han¬ 
dling  applications  which  access 
relational  database  manage¬ 
ment  systems  on  Windows  plat¬ 
forms.  Develop  system  and 
software  requirements,  create 
architectures  code  test  and 
debug  the  applications.  Utilize 
Microsoft  Foundation  Classes, 
C++,  Computer  Telephony 
Integration,  Telephony  Appli¬ 
cations  Programming  Interface 
and  hardware  device  controls  in 
the  development  process. 
Requires  Bachelor's  in  computer 
science  or  related  field;  3  years 
in  the  design  and  development 
of  computer  software  applica¬ 
tions  that  access  relational  data- 
baase  management  systems  on 
Windows  platforms  utilizing 
Microsoft  Foundation  Classes, 
C++.  Computer  Telephony 
Integration.  Telephony  Appli¬ 
cations  Programming  Interface 
and  hardware  device  controls  in 
the  development  process.  8am- 
5pm,  M-F;  $75, 000/year. 
Respond  via  resume  to 
Employment  Programs,  PO  Box 
46547.  Denver.  CO  80202  and 
refer  to  C05083510 


IT  PROFESSIONALS 
Consultant 

(Glen  Mills,  Pennsylvania  and 
other  locations  through  the 
U  S  ).  Assist  in  providing  con¬ 
sulting  services  for  implementa¬ 
tion,  testing,  development,  main¬ 
tenance  and  enhancement  of 
software  packages  and  applica¬ 
tions  by  utilizing  industry  stan¬ 
dard  methodologies  leveraging 
competencies  in  databases  and 
database  design,  systems  archi¬ 
tectures,  operating  systems, 
data  structures,  algorithms  and 
networking  along  with  develop¬ 
ment  tools  such  as  ER  Win  to 
develop  applications  and  sys¬ 
tems  utilizing  Java  Techn¬ 
ologies,  Microsoft  Visual  Basic 
technologies,  COBOL,  Power¬ 
Builder,  n-tiered  architectures  on 
environments  including  Wind¬ 
ows  and  legacy  mainframe 
(TSO)  leveraging  database  plat¬ 
forms  such  as  Microsoft  SQL 
Server,  Oracle  &  Sybase. 
Perform  technology  assess¬ 
ments  and  development  analy¬ 
sis  to  support  reviews  utilizing 
Load  Runner  and  XML.  Utilize 
data  modeling  tools  such  as  ER 
Win,  and  competencies  in  data 
structures,  algorithms,  and  net¬ 
working  to  contribute  to  the 
design  and  development  of 
technical  architectures.  Assist  in 
analyzing  and  revising  existing 
system  logic  difficulties  and  doc¬ 
umentation. 

Salary  is  $57,150  per  year. 
Mon-Fri,  9:00  am  to  5:00  pm. 
The  position  requires: 
Bachelor's  degree  or  equivalent 
in  Computer  Science,  Math, 
Engineering  (any),  Information 
Systems  or  Business  Admin¬ 
istration  +  2  years  of  experience 
in  the  job  offered  or  2  years  of 
experience  as  a  Track  Lead, 
Data  Conversion  Architect, 
Application  Development  Cons, 
Application  Development  Track 
Lead.  Related  experience  must 
include  a  minimum  of  1  year 
experience  in  Visual  Basic, 
COBOL,  PowerBuilder,  Micro¬ 
soft  SQL  Server,  Sybase,  and 
Load  Runner. 

Please  send  your  resume,  refer¬ 
encing  Job  Order  Number 
WEB434306  to  the:  PA 
Careerlink,  FLC  Unit,  235  W. 
Chelten  Avenue.,  Philadelphia, 
PA  19144.  EOE. 


Programmer  Analyst  required  by 
Kendall  Park,  NJ  based  Info 
Tech  Solutions  Provider.  Duties: 
Product  development.  Imple¬ 
mentation  and  support.  Respon¬ 
sibilities  include  requirements 
gathering,  architecture,  Product 
development,  Acceptance  plan¬ 
ning,  deriving  test  cases,  UAT, 
Implementation,  and  post  imple¬ 
mentation  support.  Coordination 
with  Spantel's  offshore  partner 
Mascon's  IT  team.  Additional 
responsibilities  include  Process 
definition;  Project  Initiation, 
Project  Planning  and  Tracking, 
Metrics  calculation,  Build  and 
release  management,  docu¬ 
menting  product  learning's  for 
further  enhancements.  Cond¬ 
ucting  Market  survey  and 
researching  on  multiple  products 
/  competitors  to  meet  the  ever 
growing  demands  of  customers, 
development  and  Implemen¬ 
tation  of  the  product  to  be  in 
compliance  with  HL7  and  HIPAA 
standards.  Analyzing,  architect¬ 
ing,  designing  and  developing 
the  product  to  interface  with  the 
legacy  systems. Req.:  Bachelors 
degree  in  Math,  or  Sci.,  or 
Engg.,  or  comp.  Sci.,  or  Infor¬ 
mation  Technology,  ( will  accept 
an  equivalency  based  on  a  com¬ 
bination  of  education  and/or 
experience),  and  two  years 
experience  in  the  job  offered  or 
related  occupation.  Hours: 
40hrs/wk  Mon.-Fri;  9:00  AM  to 
5:00PM.  Apply  to  President, 
Spantel,  LLC..  3084  Route  27, 
Ste  8,  Kendall  Park,  NJ  08824. 


IT  PROFESSIONALS 

Senior  Consultant 

(Glen  Mills,  PA  and  other  loca¬ 
tions  throughout  the  United 
States).  Design  and  develop 
fast-track  applications  to  reduce 
costs  and  provide  a  component- 
based  approach  to  the  enter¬ 
prise  applications  utilizing  J2EE 
solutions  including  EJB's,  XML 
and  XSLT.  Implement  Java 
(J2SE)  solutions  to  allow  our 
clients  to  run  the  same  applica¬ 
tion  on  various  operating  sys¬ 
tems,  hardware  platforms  and 
consumer  technological  dev¬ 
ices.  Utilize  Enterprise  App¬ 
lication  Integration  (EAI)  to  pro¬ 
vide  a  common  framework  for 
integrating  incompatible  and  dis¬ 
tributed  systems  allowing  our 
client  to  integrate  their  business 
processes.  Implement  J2EE  and 
EJB  design  patterns  and  devel¬ 
op  strategies  for  mapping  appli¬ 
cation  requirements,  developing 
best  practices  for  J2EE  and  to 
collect  EJB  strategies.  Use  XML 
(Extensible  Markup  Language) 
as  a  standard  data  format  for 
Enterprise  Application  Integ¬ 
ration  (EAI)  solutions  and  utilize 
Enterprise  Tools  and  Databases 
to  provide  support  for  the  full 
development  cycle. 

The  wage  offered  is  $85,500/ 
year.  The  work  schedule  is 
Monday-Friday  9:00am-5:00pm. 
The  minimum  requirements  are 
as  follows:  Bachelor's  degree  or 
equivalent  in  Engineering  (any), 
Business  Administration,  Comp¬ 
uter  Science,  Mathematics,  or 
Information  Systems  plus  4 
years  experience  in  the  job 
offered  or  4  years  experience  as 
a  Senior  Consultant,  Lead 
Developer,  Programmer  Analyst, 
or  Software  Programmer. 
Employer  will  regard  a  foreign 
degree  to  be  equivalent  to  a 
U.S.  Bachelor's  degree  as  deter¬ 
mined  by  an  accredited  creden¬ 
tials  evaluation  service.  Related 
experience  must  also  include  at 
least  2  years  of  J2EE  (including 
EJB's,  XML  and  XSLT),  J2SE 
(Java  2  Platform  Standard 
Edition),  Enterprise  Application 
Integration  (EAI),  J2EE  and  EJB 
design  patterns,  and  Enterprise 
Tools  and  Databases. 

Please  send  your  resume,  refer¬ 
encing  Job  Order  Number  WEB 
434352  to  the:  PA  CareerLink, 
FLC  Unit,  235  W.  Chelten 
Avenue,  Philadelphia,  PA 
19144.  EOE. 


Snr  Software  Engineer  to  ana¬ 
lyze,  design,  develop  &  architect 
web  applications  in  component 
model  (EJB)  focusing  on  finan¬ 
cial  modeling  &  planning  and  uti¬ 
lizing  high-level  technologies 
such  as  EJB,  JAVA,  J2EE, 
JHTML,  JSP,  XML,  XSL,  FOP, 
Servlets,  RMI  and  JavaBeans. 
Will  develop  planning  tools  & 
personalized  web  sites  for  in- 
house  business  units;  design  & 
develop  graphs  and  charts  using 
3rd  party  technologies;  and  will 
monitor,  maintain  &  upgrade 
components  and  database  for 
business  requirements.  Req¬ 
uirements:  Bach  or  equiv  in 
C.Sc.,  Eng,  Math  or  Physics, 
plus  2  yrs  exper  in  job  offered 
OR  2  yrs  in  on-line  transaction 
processing.  Candidate  must 
also  possess  demonstrated 
expertise  in  the  following: 
developing  web  applications  in 
J2EE,  JHTML,  and  EJB;  in  the 
administration  of  UNIX, 
Clearcase,  and  Webserver  &  in 
Oracle  Database  &  financial 
modeling  algorithms.  Sal: 
$80,405/yr;  M-F,  9a-5p. 
Submit  2  resumes  to  Case  # 
200300130,  Division  of  Career 
Services,  Labor  Certification 
Unit,  19  Staniford  St,  1st  ft, 
Boston,  MA  02114.  EOE. 
Applicants  must  be  eligible  to 
accept  full-time  employment  in 
U.S. 


Business  Development  Man¬ 
ager  -  Applications  sought  by 
company  that  provides  comput¬ 
ing  network  storage  and  that 
manufactures  computer  storage 
devices  to  work  in  Louisville,  CO 
and  other  unanticipated  job  sites 
in  the  US,  to  be  the  liaison 
between  the  business  area  and 
IS  for  identifying  and  executing 
initiatives  to  improve  client  satis¬ 
faction.  Understand  business 
area  strategies/processes  and 
performance  objectives  and  be 
involved  in  the  full  life-cycle  soft¬ 
ware/process  development. 
Analyze  and  determine  technol¬ 
ogy  requirements  to  enable  the 
achievement  of  these  objec¬ 
tives.  Test  and  troubleshoot  the 
finished  applications  (developed 
using  Java,  JSP,  ASP/VB, 
FRED,  SQL/DB,  HTML,  XML, 
JavaScript,  SAP  R/3  and 
ABAP/4)  to  make  sure  that  the 
requirements  have  been  met. 
Manage  allocation  of  resources, 
including  processes  to  meet 
objectives,  monitor  problems, 
escalation  process  and  issue 
resolution.  Requires  a  Bach¬ 
elor's  in  computer  science  or 
related  field;  3  years  as  a  soft¬ 
ware  engineer  using  SAP  R/3 
and  ABAP/4;  Working  knowl¬ 
edge  of  Java,  HTML,  XML,  and 
JavaScript,  JSP,  ASP/VB. 
FRED,  and  SQL/DB.  8am-5pm, 
M-F;  $11 2,642.70/year.  Res¬ 
pond  via  resume  to  Employment 
Programs,  PO  Box  46547, 
Denver.  CO  80202  and  refer  to 
CO5083498. 


Senior  Analyst  Developer 
sought  by  home  satellite 
design/mfg. company  in  Littleton, 
CO  to  work  in  Englewood,  CO 
and  other  unanticipated  job  sites 
in  the  US.  At  a  senior  level 
engage  in  full  life-cycle  software 
development  and  customization 
of  Oracle  General  Ledger, 
Payables,  Receivables  and 
Fixed  Assets  modules  of  Oracle 
financial  and  business  applica¬ 
tions.  The  applications  are 
designed  and  developed  in  a 
three-tier  client/server  environ¬ 
ment  and  utilize  Windows  NT  or 
UNIX  operating  systems. 
Analyze  requirements;  create 
designs;  design  documentation; 
and  code,  test,  debug,  modify, 
and  implement  the  applications. 
Serve  as  technical  lead  as  need¬ 
ed.  Utilize  PL/SQL,  SQL'Plus, 
Pro*C,  HTML,  Developer  2000 
and  other  Oracle  tools  in  the 
design  and  development 
process.  Requires  a  master's  or 
foreign  equivalent  or  bachelor's 
or  foreign  equivalent  in 
eng. including  chemical  eng. or 
computer  science,  plus  three 
years  developing  and  customiz¬ 
ing  Oracle  financial  and  busi¬ 
ness  applications;  3  yrs  experi¬ 
ence  performing  the  core  duties 
and  using  the  technologies 
described  above.  (The  3  years 
in  the  job  offered  may  be  con¬ 
current  with  the  three  years 
required  under  education);  8am- 
5pm,  M-F;  $80,000/yr.  Respond 
via  resume  to  Employment 
Programs,  PO  Box  46547, 
Denver,  CO  80202  and  refer  to 
CO5081268. 


Shaktee  Technologies  Inc. 
(DBA  Exceel)  has  multiple 
openings  for  RF  Electrical 
Engineers  (Cellular)  at  its 
office  in  San  Jose,  CA  and 
unanticipated  client  sites 
throughout  the  US.  Must  be 
able  to  travel  temporarily  to 
client  sites  within  the  U.S. 
with  expenses  paid  by  emp¬ 
loyer.  Min.  reqmts  include  BS 
in  Electrical  Eng.  or  related 
field.  Please  send  resume  to: 
Attn-HR  Manager,  1975 
Hamilton  Ave  #  33  San  Jose 
CA  95125. 


Oracle  Application  Consultant 
w/exp  in  Oracle  Application  ERP. 
Oracle  Developer  2000,  Oracle 
Form,  Quest  s/w  (Toad),  Oracle 
SQL  Plus,  Oracle  Report.  Oracle 
Discoverer,  Oracle  Designer 
2000  &  Reports.  Perform  con¬ 
version  of  data  into  Oracle 
Application  using  SQL  Loader  & 
Data  Loader  on  Win  2000,  HP 
UX  &  Sun  Solaris.  Send  res  to: 
Optima  Technology  Partners, 
Inc.,  264  South  River  Rd,  Ste 
454,  Bedford,  NH  03110. 


Software  Engineer  to  dsgn.  dvlp 
&  write  systm  &  device  drivers 
for  LAN/WAN  network  devices  & 
to  debug  &  perform  integration 
tests  on  networks  based  on 
Cisco  Routers  &  Switches. 
Provide  tech  support.  Will  utilize 
IP  security,  Novell  Netware  & 
Java.  Req.  Masters  in  Engg  or 
Comp  Sci  +  2  yrs  exp  in  job  offer 
or  job  duties.  Resp.  to 
Artilligence  Inc.,  1500  Market 
St.,  E.  Tower  12  FI,  Philadelphia, 
PA  19102,  Fax:  603-372-2771, 
E-Mail: 

sal.hernandez@artilligence.com 


S/W  Engineers  to  analyze,  de¬ 
sign  business  appls  for  SAP 
R/3,  ABAP,  Workflow,  C,  C++, 
Java,  VB,  Oracle,  SQL,  etc.  un¬ 
der  Windows.  UNIX  OS;  analyze 
business  processes  to  deter¬ 
mine  reqs  &  generate  reports; 
prepare  documents,  flow  charts 
and  programming  specs;  create 
appl  prototypes  for  client  ap¬ 
proval  and  rapid  appl  develop¬ 
ment;  train  users  in  business 
appl  usage.  Require:  MS  or  for¬ 
eign  equiv.  in  CS/Engg.(any 
branch)/Math  &  1  yr  exp  in  IT. 
High  salary.  F/T  position.  Travel 
Required  Resume  to  HR, 
Smartsoft  International,  Inc., 
3965  Johns  Creek  Court, 
Suwanee,  GA  30024. 


PROG.  ANALYST  -  WEB 
DVLPR:  Analyze,  dsgn,  build  & 
launch  high  profile  e-commerce 
sys.  using  n  tier  arch.  &  object- 
oriented  technologies.  Admin, 
internet  info,  server.  BS  in 
Comp.  Sci.,  Electrical  or 
Electronics  Engnrg  +  3  yrs  exp. 
in  job  offered  or  as  a  Software 
Engnr  -  Web  Dvlpmnt  reqd. 
Exp.  must  include  Java,  XML, 
ASP.net  and  VB.net.  High 
mobility  preferred.  40  hrs/wk, 
OT  as  reqd,  8  am  -  5  pm, 
$66,731/yr.  Submit  resume  to: 
Manager,  Butler  County 
CareerLink,  Pullman  Commerce 
Center,  112  Hollywood  Drive, 
Suite  101,  Butler,  PA  16001- 
5699.  Please  refer  to  Job  Order 
No.  WEB  433076. 
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Patches 

continued  from  page  1 

device  makers  are  exaggerating 
the  extent  of  FDA  rules.  While 
device  makers  are  largely  mum 
on  this  topic,  those  that  do  talk 
acknowledge  they  could  do 
more  to  smooth  the  process  but 
also  say  healthcare  IT  shops  need 
to  re-evaluate  how  they  set  up 
their  networks. 

Steve  Wexler,  chief  biomedical 
engineer  at  the  Department  of 
Veterans  Affairs’  Health  Admini¬ 
stration  Division,  says  the  veter¬ 
ans’  organization  is  addressing 
the  problem  head-on  by  crafting 
a  plan  to  tighten  security  on  the 
networks  of  about  150  VA  hospi¬ 
tals  and  that  the  organization 
hopes  to  have  it  in  effect  by  fall. 

“You  just  can’t  modify  a  regu¬ 
lated  device,”  says  Wexler,  who 
worked  with  about  a  dozen  net¬ 
work  and  security  managers  at 
theVA  to  devise  the  “Department 
of  Veterans  Affairs  Medical 
Device  Isolation  Architecture 
Guide.” 

The  plan  calls  for  VA  hospitals 
to  beef  up  security  on  LANs  by 
adding  internal  firewalls,  virtual 
LANs  and  remote-access  control 
lists  to  cordon  off  Windows- 


based  GE  Medical  imaging  sys¬ 
tems  and  other  gear. 

The  guide  acknowledges  that 
routine  patching  is  often  “not 
available  in  most  cases”  to  med¬ 
ical  devices  with  commercial 
operating  systems  such  as  Win¬ 
dows.  Therefore,  networked 
patient-care  equipment  could  be 
exposed  to  attacks  “that  have  the 
potential  to  destabilize  an  entire 
network,  shut  down  hospital 
operations,  corrupt  data  and 
jeopardize  patient  safety’ 

Wexler  says  users  of  networked 
medical  devices  should  put  pres¬ 
sure  on  manufacturers  to  do  a 
better  job  of  addressing  security 
concerns. 

“This  problem  is  solvable,”  he 
says.  “The  intent  is  to  minimize 
the  exposure  and  the  risk.  The 
vendors  understand  there  needs 
to  be  a  culture  change.  It’s  on 
their  radar  scope.” 

Wexler  says  changes  could  in¬ 
clude  the  shipping  of  equip¬ 
ment  with  network  ports  closed, 
or  better  access-control  or  ven¬ 
dor  Web  sites  announcing  vul¬ 
nerabilities  and  a  status  for 
patching.That  way,  he  notes,  hos¬ 
pitals  won’t  have  to  give  up  the 
benefits  of  networked  medical 
equipment. 


Aventail  goes  small 
with  SSL  VPN  appliance 

■  BY  TIM  GREENE 

Aventail  is  wheeling  out  a  scaled-down,  less-expensive  version  of  its 
Secure  Sockets  Layer  VPN  security  appliance  to  make  the  technology 
more  attractive  to  smaller  customers. 

Called  EX-750,  the  appliance  supports  up  to  50  simultaneous  users, 
while  the  existing  EX-1500  supports  up  to  1,000,  which  is  more  than 
many  customers  need  or  want  to  pay  for. 

Customers  can  buy  the  new  appliance  with  a  25-user  license  for 
$7,000,  while  the  same  capacity  on  an  EX-1500  costs  $9,500.  EX-750 
also  comes  with  a  50-user  license  that  costs  $10,000. 

The  equipment  sits  between  the  Internet  and  corporate  servers  to 
proxy  sessions  secured  by  SSL  between  remote  users  and  servers. 
Remote  machines  require  an  SSL-enabled  Web  browser,  but  no  other 
client  software. 

Other  vendors  make  similar  gear  including  Cisco,  F5  Networks, 
Nokia,  Nortel,  Juniper  and  Whale  Communications.  Start-up  enKoo 
makes  a  less-expensive  SSL  remote-access  appliance  —  $1,000  for  10 
users  —  geared  for  small  customers  that  lacks  many  features  others 
offer.  AEP  Systems,  a  competitor  focused  on  low  pricing,  sells  the  AG- 
60  appliance  —  which  supports  up  to  50  remote  users  —  for  $7,000. 

WTiile  Aventail’s  EX-750  costs  the  same  for  just  25  users,  it  includes 
all  the  features  that  its  larger  sibling,  the  EX- 1500,  offers.  For  instance, 
the  Aventail  devices  support  a  virtual  desktop,  which  is  an  encrypted 
vault  created  on  the  remote  machine  that  is  wiped  out  after  the 
secure  session,  says  Eric  Siegel,  an  analyst  with  Burton  Group.  This 
action  leaves  no  trace  of  any  files  that  are  used  during  the  sessions 
and  is  a  feature  few  SSL  vendors  have.  Called  Secure  Desktop,  this 
vault  is  a  new  feature  that  debuted  recently  with  the  latest  version  of 
the  company's  ASAP  software.  The  new  ASAP  version  included 
changes  that  let  it  run  on  EX-750  hardware.* 


Healthy  networks 

Here  is  a  five-step 
approach  to  protect  a 
hospital’s  network  from 
the  U.S.  Department  of 
Veterans  Affairs: 


1 

2 

3 


Gather  a  list  of  all 
networked  medical 
devices. 

Group  individual  devices 
into  systems. 

Categorize  those  sys¬ 
tems  by  communication 
requirements. 


4 

5 


Mitigate  the  systems  into 
virtual  LANs. 

Protect  the  VLANs  with 
access  control  lists  or 
firewalls. 


SOURCE:  "THE  DEPARTMENT  OF  VETERANS 
AFFAIRS  MEDICAL  DEVICE  ISOLATION 
ARCHITECTURE  GUIDE."  FULL  DOCUMENT  AT 
WWW.NWFUSION.COM,  DOCFINDER:  2945. 


Philips  Medical  Systems  last 
week  explained  why  patching  is 
so  hard  with  medical  equipment 
—  and  also  acknowledged  its 
sales  and  support  personnel 
might  be  sowing  confusion 
about  the  matter. 

Nick  Mankovich,  director  of 
product  IT  security,  says  Philips 
makes  about  300  patient-care 
medical  devices  that  are  regulat¬ 
ed  by  the  FDA  and  that  about 
60%  of  them  run  on  Windows. 

“There  are  two  priorities  for  the 
FDA:  safety  and  effectiveness,”  he 
says.  Software  changes  such  as 
patches  require  Philips  to  do 
extensive  verification  and  valida¬ 
tion  in  a  test  regimen  that  is 
“measured  in  months  —  it’s 
always  the  case,”  he  adds. 

“I  don’t  want  a  medical  IT  per¬ 
son  patching  these  systems,” 
Mankovich  says.  “We’ve  all  seen 
how  Microsoft  patches  are 
breaking  systems.” 

Some  Philips  customers  have 
said  Philips  sales  and  support 
representatives  have  promised  to 
make  software  patches  available 
within  a  week  after  Microsoft 
releases  them  but  failed  to  deliv¬ 
er  on  the  promise. 

“A  three-day  patch?  I  just  can’t 
guarantee  that.  The  FDA  has 
certain  expectations,”  Manko¬ 
vich  says.  “Sometimes  patches 
will  break  the  applications,  and 
in  the  healthcare  industry  we 
can’t  afford  to  have  mistakes  for 


Security 
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our  patients.” 

He  acknowledges  the  manu¬ 
facturer  and  its  customers  at 
times  might  not  be  having  a 
realistic  dialogue  about  the 
patching  issue. 

To  improve  the  situation, 
Philips  is  inaugurating  an  in- 
house  education  program  for 
sales  and  support  staff  on  the 
topic  of  security  and  patching. 
For  more  than  a  year,  the  com¬ 
pany  has  been  doing  a  risk 
analysis  of  its  products  with  the 
goal  of  identifying  potential 
security  risks  and  providing  cus¬ 
tomers  with  documentation  on 
how  to  offset  the  risks.  But  this 
effort  is  taking  longer  than  first 
thought,  he  says. 

Mankovich  says  hospitals  wor¬ 
ried  about  computer  worms  hit¬ 
ting  unpatched  systems  have  two 
basic  choices  with  the  current 
generation  of  Microsoft-centric 
patient-care  machines:  unplug 
them  from  the  hospital’s  LAN  or 
improve  intranet  security  through 
defense-in-depth  strategies. 

He  says  most  gear  is  designed 
to  work  fine  while  not  net¬ 
worked,  though  Mankovich  con¬ 
cedes  that  this  means  giving  up 
the  ease  of  remote  access  to 
images  and  patient  information, 
and  a  return  to  hospital  staff 
hoofing  it  from  room  to  room. 

The  alternative  would  be  beef¬ 
ing  up  internal  network  security 
by  adding  layers  of  defense  like¬ 
ly  to  include  virtual  LANs,  inter¬ 
nal  firewalls  and  intrusion-pre¬ 
vention  systems  that  block 
attacks,  not  just  monitor  for 
them. 

“The  pendulum  has  swung  too 
far  to  flattened  and  too-open  net¬ 
works  —  and  the  pendulum  will 
swing  back  again  to  ensure  con¬ 
fidentiality,  data  integrity  and 
availability”  Mankovich  says. 
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“Hospital  administrators  have  to 
understand  what  security  in 
depth  means.” 

Some  hospital  administrators 
question  why  medical-device 
manufacturers  have  shifted  to 
Windows  as  the  preferred  plat¬ 
form  over  the  last  few  years, 
when  Microsoft’s  track  record  on 
patching  has  been  so  poor. 

“Personally,  I  think  it’s  a  mistake 
for  medical-device  suppliers  to 
use  a  bug-ridden  operating  sys¬ 
tem  like  Windows  XP2000  or  NT 
for  a  life-care  device,”  says 
Matthew  Klevemann,  senior 
technical  architect  for  informa¬ 
tion  services  at  Children’s 
Hospital  of  Pittsburgh. 

Mankovich  says  Philips  moved 
to  predominantly  Microsoft- 
based  platforms  to  lower  costs, 
which  he  says  is  what  customers 
were  demanding.  He  says  there 
are  no  plans  to  move  away  from 
Microsoft. 

Hospitals  that  might  have  re¬ 
duced  costs  by  having  a  com¬ 
mon  platform  and  networked  de¬ 
vices  must  expect  to  spend 
money  to  improve  security  of 
medical  equipment  if  they  don’t 
want  to  unplug,  he  says. 

Making  changes  is  tough  in  the 
healthcare  industry,  says  Susan 
Caron,  director  of  clinical  prod¬ 
ucts  at  Psyche  Systems,  which 
makes  a  blood  bank  software 
product  that  also  is  available  as  a 
hosted  service. 

Caron  says  it  took  about  three 
years  to  get  the  blood  bank  soft¬ 
ware,  which  is  based  on  VMS, 
through  the  FDA  510(k)  regula¬ 
tory  approval  process.  Pbrting  it 
to  another  platform  would  en¬ 
tail  re-submitting  it  for  approval, 
she  says.  ■  « 
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Soft  costs 

New  hardware  architectures  such  as  multi-core  systems, 

virtualization  and  grid  technology  provide  flexibility 

but  add  challenges  users  must  cope  with  down  the  road. 

Consider: 

•  Multi-core,  multi-licenses:  Intel  and  AMD  plan  to  move  to 
multi-core  designs,  and  that  means  users  across  the  board  need 
to  think  carefully  about  how  independent  software  vendors 
define  a  CPU. 

•  Virtual  machines,  real  costs:  While  per-processor  licensing 
means  users  can  run  multiple  instances  of  an  operating  system 
or  application,  many  vendors  still  require  licenses  for  each 
instance  deployed  in  virtual  environments. 

•  Grid  workloads,  workload  issues:  Grids  made  up  of  multi¬ 
processor  boxes  raise  issues  with  per-CPU  licensing  if  workloads 
are  moved  among  one-processor  boxes  and  two-processor 
boxes,  for  example. 


Multi-core 

continued  from  page  1 

work  to  manage  IT  budgets. 

At  the  same  time,  other  tech¬ 
nologies  —  such  as  server  virtual¬ 
ization  and  grid  computing  — 
that  fall  under  the  utility  comput¬ 
ing  umbrella,  in  which  computer 
resources  are  pooled  and  work¬ 
loads  shifted  according  to  appli¬ 
cation  demands,  also  are  causing 
some  tricky  software  licensing 
issues. 

The  trend  toward  multi-core  sys¬ 
tems  is  an  effort  by  server  chip 
makers  to  drive  up  performance, 
while  reining  in  system  power 
requirements  and  heat  genera¬ 
tion.  By  using  these  architectures, 
vendors  can  use  more  lower- 
power  cores  —  which  generate 
less  heat  —  instead  of  ramping 
up  the  frequency  on  single  cores 
to  boost  performance.  IBM  has 
had  a  dual-core  chip  since  2001, 
and  Sun  and  HP  rolled  out  dual¬ 
core  processors  earlier  this  year. 
Intel  and  Advanced  Micro  De¬ 
vices  recently  announced  that 
they  would  move  to  dual-core 
designs  in  2005. 


“Multi-core  is  a  symptom  of  a 
bigger  issue,”  says  A1  Gillen, 
research  director  of  system  soft¬ 
ware  at  IDC.The  bigger  issue  is 
that  we  have  changing  technolo¬ 
gies  that  are  making  historical 
licensing  models  no  longer 
directly  compatible  with  the  way 
people  are  buying  and  deploying 
their  equipment  today’ 

W.L.  Gore  &  Associates,  best 
known  for  its  Gore-tex  fabric, 
negotiated  a  software  license 
with  Oracle  late  last  year  and 
then  began  updating  its  Sun  hard¬ 
ware.  In  the  process  of  bringing  in 
servers  based  on  Sun’s  first  dual¬ 
core  chip,  UltraSparc  IV,  the 
Newark,  Del.,  company  discov¬ 
ered  that  Oracle  considered  each 
dual-core  UltraSparc  IV  to  be  two 
processors  for  licensing  purpos¬ 
es.  That  meant  WL.  Gore  was 
faced  with  paying  double  what  it 
originally  expected  to  pay  for 
licensing,  amounting  to  $100,000 
per  server  in  additional  costs. 

“When  we  first  heard  this,  we 
weren’t  happy,  of  course,”  says 
Richard  Sun,  network  systems 
engineer  at  WL.  Gore.  “In  all  of 
our  initial  conversations  with 


Oracle,  before  we  purchased  the 
licensing,  we  had  said  we  were 
going  to  buy  the  [Sun]  hardware 
when  we  were  ready  to  imple¬ 
ment,  so  we  felt  going  to 
UltraSparc  IV  was  no  issue.” 

Analysts  say  WL.  Gore  is  not 
alone  when  it  comes  to  being  sur¬ 
prised  by  the  increased  software 
costs  when  updating  to  multi¬ 
processor  systems. 

“In  fact,  I  have  spoken  with 
clients  who  have  been  told 
exactly  the  opposite  from  the 
server  vendors,”  says  Jane 
Disbrow,  a  research  director  with 
Gartner.  “They’ve  been  told,  ‘No, 
you  don’t  have  to  pay  double 
licenses.  This  is  going  to  save  you 
money  in  software.’  I’m  the  one 
that  has  to  give  them  the  bad 
news.” 

While  most  software  vendors 
still  are  feeling  their  way  around 
the  multi-processor  issue,  Oracle 
recently  made  changes  in  its  con¬ 
tract  language  to  ensure  that 
there  is  no  confusion.  In  April,  the 
vendor  changed  its  license  agree 
ment  to  redefine  its  processor 
metric  to  explicitly  state:  “For  the 
purposes  of  counting  the  number 
of  processors  which  require 
licensing,  a  multi-core  chip  with 
‘n’ processors  shall  be  counted  as 
‘n’  processors.” 

One  reason  for  the  confusion  is 
that  software  vendors  have  not 
regarded  chips  with  simultane¬ 
ous  multithreading  (SMT)  or 
Intel’s  Hyper-Threading  technol¬ 
ogy  which  make  single  proces¬ 
sors  work  as  though  they  were 
two  processors,  as  more  than  a 
single  processor. 

“The  reason  for  that  is  pragmat¬ 
ic,  and  that  is  that  those  two 
threads  per  core  don’t  do  any¬ 
thing  like  double  the  perfor¬ 
mance.  It  may  be  10%  to  25%  to 
30%  performance  improvement, 
but  essentially  SMT  is  a  perfor¬ 


mance-enhancing  technique  to 
increase  utilization  of  a  processor 
core,” says  Gordon  Haff.an  analyst 
with  Illuminata. 

What  isn’t  so  obvious,  some 
industry  observers  say,  is  what 
kind  of  performance  boost  users 
will  see  vs.  comparable  single¬ 
core  systems. 

In  addition,  licensing  costs  asso¬ 
ciated  with  multi-core  architec¬ 
tures  might  complicate  other 
issues,  such  as  buying  processors 
for  redundancy  users  say. 

Eric  Kuzmack,  IT  architect  at 
newspaper  conglomerate  Gan¬ 
nett  in  Silver  Spring,  Md.,  says  he 
deploys  dual-processor  systems 
to  have  hardware  redundancy 

“If  the  software  vendors  choose 
to  charge  us  for  two  processors 
when  we  move  to  dual-core,  it 
makes  it  more  difficult  for  us  to 
afford  to  put  in  two  processors 
because  then  I’ll  be  buying  two 
physical  packages  of  chips, but  I’ll 
have  to  pay  for  four  processors 
worth  of  licenses,  not  two,”  he 
says. 

Despite  user  concerns,  most 
industry  observers  seem  to  agree 
that  it’s  not  unreasonable  for  soft¬ 
ware  vendors  to  consider  dual¬ 
core  CPUs  as  two  processors. 
Bigger  issues  are  likely  to  emerge, 
however,  as  architectures  move 
into  four  cores  and  beyond.  Sun, 
for  example,  in  2006  plans  to 
release  systems  based  on  a  next- 
generation  chip  code-named 
Niagara,  which  will  have  proces¬ 
sors  with  eight  cores,  each  capa¬ 
ble  of  running  four  simultaneous 
threads,  or  software  instructions. 
Intel,  which  plans  to  release  a 
dual-core  Itanium  chip  next  year, 
reportedly  expects  to  increase 
the  number  of  cores  to  eight  and 
then  16  in  the  years  ahead. 

“By  the  time  it  gets  beyond  dual¬ 
core,  the  software  vendors  are 
truly  going  to  have  to  think  about 


a  different  way  to  license  their 
products,”  Disbrow  says.  “Eventu¬ 
ally  people  won’t  be  able  to  live 
with  the  software  costs.  The  soft¬ 
ware  vendors  are  definitely  going 
to  have  to  look  at  how  they’re 
charging  for  this.” 

How  the  issue  can  be  resolved 
isn’t  clear.  But  analysts  and  users 
expect  software  vendors  to 
change  licensing  plans  to  make 
them  more  flexible. 

Sun  last  year  began  using  sub¬ 
scription  pricing  for  its  Java 
Enterprise  stack  of  middleware 
software,  letting  users  pay  for 
applications  based  on  the  num¬ 
ber  of  employees,  regardless  of 
what  systems  the  software  runs 
on  and  how  many  services  and 
customers  it  serves. 

John  Fowler,  executive  vice 
president  of  network  systems  at 
Sun,  says  the  trend  toward  multi¬ 
core  processors,  and  dynamic 
computing  environments,  in 
which  workloads  are  moved 
among  systems  according  to 
application  demands,  prompted 
the  licensing  change.  Before  last 
year,  Sun  licensed  software  on  a 
per-system  basis. 

“What  drove  the  change  for  us 
was  the  fact  that  customers  really 
need  to  be  able  to  move  around 
workloads  and  respond  to  differ¬ 
ent  application  needs,”  he  says.'A 
dynamic  computing  environ¬ 
ment  is  not  eight  weeks  of 
lawyers  every  time  you  have  to 
renegotiate  a  license.” 

Gannett’s  Kuzmack  complains 
that  with  virtualized  systems  “it 
takes  us  longer  to  purchase  the 
software  license  than  it  does  to 
provision  the  virtual  machine.” 

Dan  Kaberon,  director  of  com¬ 
puter  resource  management  at 
human  resources  service  firm 
Hewitt  Associates  in  Lincolnshire, 
Ill.,  agrees  that  today’s  software 
licensing  is  lagging  behind  ad¬ 
vances  in  hardware  and  systems 
management.  Being  able  to  move 
workloads  and  consolidate  sys¬ 
tems  on  virtual  machines, should¬ 
n't  result  in  a  financial  penalty  on 
the  software  side,  he  says. 

“I  would  just  like  to  see  a  ratio¬ 
nal  alignment  of  licensing  so  that 
if  we’re  able  to  collapse  multiple 
workloads  onto  a  smaller  num¬ 
ber  of  servers  that  our  licensing 
reflect  that  new  environment  and 
not  pretend  as  if  we  were  still  tak¬ 
ing  advantage  of  all  of  our  dedi¬ 
cated  machines”  he  says. “In  that 
case,  we  no  longer  have  the 
upward  growth  and  capacity 
opportunity  and  we  shouldn’t  be 
penalized  for  it.’  B 

Get  more  infwutatisH  online. 
Dacfinder:  2951 
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Opsware  extends 
automation  features 

■  BY  DENISE  DUBIE 

About  a  year  ago,  IT  managers  at  Inflow, a  technology  service  provider 
in  Denver,  determined  that  an  investment  in  automation  technology 
could  reduce  the  number  of  full-time  system  administrators  needed  to 
manage  600  servers  from  nine  to  six. 

A  recent  review  showed  by  using  Opsware  Systems  software,  Inflow 
can  maintain  the  same  600  servers  with  only  three  administrators. 

“We  had  to  commit  to  performing  a  baseline  and  to  integrating  the 
software  with  our  systems,  but  now  we  have  a  200-to-l  server-to-admin 
ratio,  which  is  a  real  gain  from  using  that  [Opsware]  platform,”  says 
Lenny  Monsour, general  manager  of  hosting  and  infrastructure  services 
at  Inflow.  Monsour  credits  extensive  integration  between  Opsware  and 
Inflow  systems  for  the  successful  rollout. 

Opsware  this  week  plans  to  unveil  Opsware  System  4.5,  which  the 
company  says  will  make  it  easier  for  customers  to  integrate  the 
automation  software  into  existing  environments  and  reduce  manual 
effort  around  patch,  asset,  change  and  server  management.  The  core 
software  is  written  to  work  with  a  new  software  add-on, Opsware  Exten¬ 
sion  Builder,  which  provides  templates  to  help  customers  build  auto¬ 
mation  applications  for  custom  processes  and  proprietary  systems. 

“Opsware  sold  an  out-of-the-box  automation  tool  to  customers  with 
very  complex  environments,  who  then  wrote  additional  code  to  cus¬ 
tomize  the  product  to  get  use  of  the  automation  in  their  networks," says 
Andy  Schroepfer,  founder  of  Tier  1  Research.  He  says  some  customiza¬ 
tion  must  be  done  to  automate  patch  distribution,  server  provisioning 
and  application  upgrades,  whether  through  systems  integrators  or  in- 
house  IT  managers.  Opsware  added  the  capabilities  in  its  software  to 
enable  customers  to  do  in-house  development  more  easily. 

The  product  uses  a  combination  of  server  and  agent  software.  The 
server  software  is  installed  on  a  Linux  or  Solaris  box  and  serves  as  the 
core,  while  the  agents  are  distributed  to  every  managed  server. 
Opsware  System  4.5  costs  between  $1,000  and  $1,200  per  server  and 
ships  with  Opsware  Extension  Builder.  ■ 
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Frankensoft: 

“We  must  also  work  to  change 
a  number  of  customer  perceptions, 
including  the  views  that  older  ver¬ 
sions  of  Office  and  Windows  are  good 
enough,  and  that  Microsoft  is  not 
sufficiently  focused  on  security. ” 

—  Microsoft  CEO  Steve  Ballmer  in  a 
July  6  company-wide  e-mail. 

Ballmer’s  words  are  hard  to  take  without  being 
cynical.  As  Owen  Thomas  quipped  in  a  recent  issue 
of  his  Ditherati  newsletter  (www.ditherati.net),  this 
was  “Ballmer,  addressing  employees  on  the  urgent 
need  to  deceive  customers  more  aggressively’ 

Microsoft  has  bent  the  rules  of  business,  but  we 
must  be  realistic:  We  created  the  monster. 

We  wanted  inexpensive  software  and  there  was 
Microsoft  —  the  right  company  with  the  right  prod¬ 
ucts  at  the  right  time.  We  let  ourselves  be  sold  on  its 
“vision”  and  its  story  Of  course  its  rose-colored  glass¬ 
es  filtered  its  vision  but  it  never  actually  fooled  us,  it 
just  sold  us  the  products  and  the  stories  we  wanted. 

Microsoft  continues  to  take  advantage  of  its  oppor¬ 
tunities  in  ways  that  have  been  judged  illegal  and  in 
other  ways  that  are  unethical  but  not  unlawful. 

When  I  say  unethical,  I  mean  that  Microsoft  inten¬ 
tionally  created  software  to  “lock”  customers  into  its 
way  of  doing  things  despite  the  consequences. 


The  monster  we  made 


These  consequences  appeared  in  the  form  of  insta¬ 
bility  and  poor  supportabilityYou  can  trace  that 
back  to  the  monolithic  and  clumsy  architecture  of 
Windows,  compromised  by  allowances  for  its  own 
applications,  and  to  the  embedding  of  applications 
such  as  browsing  and  multimedia  rendering  as  core 
operating  system  functionality 

Who  could  defend  Microsoft  pushing  its  “stan¬ 
dards”  in  preference  to  established  de  jure  stan¬ 
dards?  Or  what  about  where  it’s  had  to  implement 
de  jure  standards  and  done  a  horrible  job  of  it  —  for 
example,  Outlook’s  appalling  IMAP  support. 

We  all  bought  into  its  “innovative”  products  be¬ 
cause  we  had  business  problems  that  had  to  be 
solved  now,  and  Microsoft  had  the  solutions.  Un¬ 
fortunately  neither  Microsoft  nor  the  best  and  bright¬ 
est  in  the  IT  industry  ever  foresaw  where  we  would 
wind  up. 

So  as  much  as  we  should  like  to  be  understanding 
and  constructive  with  regard  to  the  monster  we 
made,  that  isn’t  possible  because  the  monster  hasn’t 
matured,  and  we  can’t  (and  can’t  afford  to)  kill  it  off. 
Alas,  it  is  still  clumping  around  the  countryside, 
grasping  arms  to  the  fore,  dead-fish  gaze  seeing  only 
what  it  wants  to  see,  leaving  chaos  in  its  wake. 

The  worst  chaos  comes  from  security  issues.  While 
this  has  been  historically  centered  on  Windows,  now 
the  largest-scale  problems  are  in  Microsoft’s  browser, 


Internet  Explorer. 

We’re  at  what  should  be  the  tipping  point,  the  criti¬ 
cal  moment  where  something  should  be  done,  has 
to  be  done  —  where  we  should  all  admit  that  for  all 
sorts  of  good  reasons  we  backed  the  wrong  horse. 

But  can  Microsoft  fix  the  problems  with  Internet 
Explorer?  Some  people  contend  that  Explorer’s 
architecture  is  fundamentally  flawed  and  therefore 
can’t  be  fixed.  Others  contend  the  layering  of  patch¬ 
es  on  patches  can  never  produce  a  stable  result. 
Whichever  way  you  look  at  it, you  have  to  ask,  can 
we  afford  to  continue  using  Explorer? 

We  have  a  good  idea  of  what  it  would  cost  to 
migrate  from  Explorer  to  something  else  (say  Opera 
or  Firefox),and  it  isn’t  trivial.  How  could  we  encour¬ 
age  a  mass  consumer  migration? 

Yet  if  we  don’t  do  something  about  our  reliance  on 
Internet  Explorer  we  risk  e-commerce  becoming  a 
mess  and  corporate  Explorer-based  systems  going 
into  meltdown.  IT  will  be  left  to  clear  a  disaster  that 
could  have  been  avoided  for  much  less  cost  if  we 
had  done  something  before  it  got  out  of  hand. 

Yes,  we  got  what  we  asked  for  and  as  a  conse¬ 
quence  created  a  monster.  If  we  can’t  kill  it  do  we 
have  the  nerve  to  do  something  about  its  spawn? 

Cries  of  “where's  my  pitchfork?"  to  backspin@ 
gibbs.com. 
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By  Paul  McNamara 


Could  we  stone  them  instead? 

President  Bush  last  week  signed 
into  law  the  Identity  Theft  Penalty 

Enhancement  Act,  meaning  that  those  who  pilfer  personal  information  such 
as  credit  card  and  Social  Security  numbers  now  face  the  prospect  of  up  to 
five  additional  years  in  the  slammer. 

Here's  hoping  that  every  minute  of  that  extra  time  is  as  miserable  as  it  is 
well  deserved.  Identity  theft  not  only  costs  U.S.  businesses  and  consumers 
tens  of  billions  of  dollars  annually,  but  the  unabated  escalation  of  such  crime 
also  threatens  to  grievously  undermine  public  confidence  in  conducting 
commerce  online.  Merchants  are  panicked,  as  well  they  should  be,  and  a 
variety  of  industry  alliances  have  coalesced  around  the  common  goal  of 
stemming  the  tide,  as  well  they  should. 

Perhaps  worst  of  all,  identity  theft  keeps  creeping  into  my  life. 

My  ATM/credit  card  was  canceled  a  while  back  because  BJ’s  Wholesale 
Club  let  a  crook  make  off  with  a  batch  of  numbers,  something  I  learned  of 
only  after  the  card  was  rejected  at  the  grocery  checkout  counter.  Fortu¬ 
nately,  the  checkout  embarrassment  and  a  few  days  of  nervous  uncertainty 
were  the  extent  of  my  victimization.  Identity  theft  victims  typically  spend 
between  30  and  60  hours  working  to  undo  the  damage,  according  to  one 
study. 

Today,  I  received  an  “eBay  account  error”  notice  from  a  party  pretending  to 
be  the  online  auction  outfit  that  couldn’t  possibly  have  been  a  more  obvious 
phishing  foray:  I  don't  have  an  eBay  account.  I've  gotten  a  handful  of  similar 
entreaties  as  of  late  about  my  non-existent  accounts  with  PayPal  and  vari¬ 
ous  banks. 

A  savvy  friend  who  works  right  here  at  “The  Leader  in  Network 
Knowledge"  tells  me  he  almost  got  hooked  by  a  phisher  shortly  after  using 


PayPal  to  buy  something  on  eBay.The  real  transaction  had  lowered  his 
defenses,  a  natural  enough  reaction  on  anyone's  part. 

They're  targeting  my  family,  too.  We  have  had  an  MSN  account  since  the 
beginning  of  time  but  no  longer  need  it  now  that  our  cable  company  has 
come  across  with  broadband  (something  Verizon  still  hasn’t  done  in  my 
neighborhood  five  years  after  telling  us  DSL  would  be  available  within  six 
months).  Anyway,  Mrs.  Buzz  opened  an  e-mail  ostensibly  from  MSN  cus¬ 
tomer  service,  which  said  they  needed  our  credit  card  number  confirmed. 

She  presumed  I  had  already  attempted  to  cancel  the  account  and  that  the 
request  for  our  number  was  a  legitimate  part  of  that  process.  I  had  done  no 
such  thing.  Fortunately,  she  showed  me  a  printout  of  the  e-mail  before  acting 
on  its  request  to  fax  them  the  information. 

So  I’m  ready  to  see  a  bunch  of  these  creeps  do  serious  time  in  the  can. 

However,  wanting  to  see  such  criminals  punished  isn't  the  same  thing  as 
believing  that  the  harsher  sentences  spelled  out  in  this  new  law  will  do  much 
to  reduce  identity  theft.  I  don’t  believe  any  such  thing. 

Politicians  are  extraordinarily  focused  when  it  comes  to  “getting  tough" 
with  criminals,  especially  in  an  election  year.  On  the  other  hand,  they  aren’t 
so  great  about  measuring  the  success  of  these  get-tough  initiatives.  Jail 
cells  cost  taxpayers  plenty,  and  despite  nonstop  prison  building  they  remain 
in  short  supply  compared  with  the  number  of  individuals  who  might  reason¬ 
ably  belong  in  one  —  including,  these  days,  that  other  blight  on  the  'Net  — 
hard-core  spammers.  When  identity  thieves  get  five  extra  years,  some  other 
deserving  criminal  —  maybe  even  a  violent  one  —  isn’t  doing  that  time. 

This  might  be  all  well  and  good  if  the  public  gets  an  extra  measure  of  pro¬ 
tection  against  identity  theft  in  the  bargain;  not  so  well  and  good  if  all  we  get 
is  the  satisfaction  at  seeing  bad  actors  behind  bars. 

Note  to  identity  thieves:  Mine  really  isn’t  worth  stealing.  Note  to  readers:  The 
address  is  buzz@nww.com. 
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See  how  middleware  works.  See  how  it  helps  businesses  succeed.  See  it  at  ibm.com/middleware/integrate 
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1.  Car  notifies  owner  for  service. 

2.  Factory  informed  immediately. 

3.  Supplier  ships  parts  instantly. 

4.  Dealer  inventory  adjusts  in  real  time 

5.  Car  back  on  road  in  no  time. 


MIDDLEWARE  IS  IBM  SOFTWARE.  Powerful  software 
like  DB2®  and  WebSphere®  that  can  connect  your  business 
end-to-end.  You  can  build  upon  your  existing  applications, 
creating  a  responsive  environment  where  partners,  vendors 
and  customers  can  easily  work  together.  And  IBM  software 
is  based  entirely  on  open  standards  for  maximum  efficiency, 
flexibility,  speed  and  agility.  That’s  ON  DEMAND  BUSINESS. 


Middleware  is  Everywhere.  Can  you  see  it? 
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